./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/email_spec9_product12_true-unreach-call_true-termination.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 0cd3be1d Calling Ultimate with: java -Dosgi.configuration.area=/tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/data/config -Xmx12G -Xms1G -jar /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/plugins/org.eclipse.equinox.launcher_1.3.100.v20150511-1540.jar -data @noDefault -ultimatedata /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/data -tc /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/email_spec9_product12_true-unreach-call_true-termination.cil.c -s /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(__VERIFIER_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 122860f60c237ba0e5aaff00f5b5723e95eecabf ....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................... Execution finished normally Writing output log to file Ultimate.log Result: TRUE --- Real Ultimate output --- This is Ultimate 0.1.23-0cd3be1 [2018-11-28 12:34:36,810 INFO L170 SettingsManager]: Resetting all preferences to default values... [2018-11-28 12:34:36,811 INFO L174 SettingsManager]: Resetting UltimateCore preferences to default values [2018-11-28 12:34:36,818 INFO L177 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2018-11-28 12:34:36,818 INFO L174 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2018-11-28 12:34:36,819 INFO L174 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2018-11-28 12:34:36,819 INFO L174 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2018-11-28 12:34:36,820 INFO L174 SettingsManager]: Resetting LassoRanker preferences to default values [2018-11-28 12:34:36,821 INFO L174 SettingsManager]: Resetting Reaching Definitions preferences to default values [2018-11-28 12:34:36,822 INFO L174 SettingsManager]: Resetting SyntaxChecker preferences to default values [2018-11-28 12:34:36,823 INFO L177 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2018-11-28 12:34:36,823 INFO L174 SettingsManager]: Resetting LTL2Aut preferences to default values [2018-11-28 12:34:36,824 INFO L174 SettingsManager]: Resetting PEA to Boogie preferences to default values [2018-11-28 12:34:36,824 INFO L174 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2018-11-28 12:34:36,825 INFO L174 SettingsManager]: Resetting ChcToBoogie preferences to default values [2018-11-28 12:34:36,826 INFO L174 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2018-11-28 12:34:36,826 INFO L174 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2018-11-28 12:34:36,827 INFO L174 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2018-11-28 12:34:36,829 INFO L174 SettingsManager]: Resetting CodeCheck preferences to default values [2018-11-28 12:34:36,830 INFO L174 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2018-11-28 12:34:36,831 INFO L174 SettingsManager]: Resetting RCFGBuilder preferences to default values [2018-11-28 12:34:36,832 INFO L174 SettingsManager]: Resetting TraceAbstraction preferences to default values [2018-11-28 12:34:36,833 INFO L177 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2018-11-28 12:34:36,833 INFO L177 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2018-11-28 12:34:36,834 INFO L174 SettingsManager]: Resetting TreeAutomizer preferences to default values [2018-11-28 12:34:36,834 INFO L174 SettingsManager]: Resetting IcfgTransformer preferences to default values [2018-11-28 12:34:36,835 INFO L174 SettingsManager]: Resetting Boogie Printer preferences to default values [2018-11-28 12:34:36,835 INFO L174 SettingsManager]: Resetting ReqPrinter preferences to default values [2018-11-28 12:34:36,836 INFO L174 SettingsManager]: Resetting Witness Printer preferences to default values [2018-11-28 12:34:36,837 INFO L177 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2018-11-28 12:34:36,837 INFO L174 SettingsManager]: Resetting CDTParser preferences to default values [2018-11-28 12:34:36,837 INFO L177 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2018-11-28 12:34:36,837 INFO L177 SettingsManager]: ReqParser provides no preferences, ignoring... [2018-11-28 12:34:36,838 INFO L174 SettingsManager]: Resetting SmtParser preferences to default values [2018-11-28 12:34:36,838 INFO L174 SettingsManager]: Resetting Witness Parser preferences to default values [2018-11-28 12:34:36,839 INFO L181 SettingsManager]: Finished resetting all preferences to default values... [2018-11-28 12:34:36,839 INFO L98 SettingsManager]: Beginning loading settings from /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/config/svcomp-Reach-32bit-Automizer_Default.epf [2018-11-28 12:34:36,849 INFO L110 SettingsManager]: Loading preferences was successful [2018-11-28 12:34:36,849 INFO L112 SettingsManager]: Preferences different from defaults after loading the file: [2018-11-28 12:34:36,850 INFO L131 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2018-11-28 12:34:36,850 INFO L133 SettingsManager]: * ... calls to implemented procedures=ONLY_FOR_CONCURRENT_PROGRAMS [2018-11-28 12:34:36,850 INFO L131 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2018-11-28 12:34:36,850 INFO L133 SettingsManager]: * Create parallel compositions if possible=false [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * Use SBE=true [2018-11-28 12:34:36,851 INFO L131 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * sizeof long=4 [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * Overapproximate operations on floating types=true [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * sizeof POINTER=4 [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * Check division by zero=IGNORE [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2018-11-28 12:34:36,851 INFO L133 SettingsManager]: * sizeof long double=12 [2018-11-28 12:34:36,852 INFO L133 SettingsManager]: * Check if freed pointer was valid=false [2018-11-28 12:34:36,852 INFO L133 SettingsManager]: * Use constant arrays=true [2018-11-28 12:34:36,852 INFO L133 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2018-11-28 12:34:36,852 INFO L131 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2018-11-28 12:34:36,852 INFO L133 SettingsManager]: * Size of a code block=SequenceOfStatements [2018-11-28 12:34:36,852 INFO L133 SettingsManager]: * To the following directory=./dump/ [2018-11-28 12:34:36,852 INFO L133 SettingsManager]: * SMT solver=External_DefaultMode [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2018-11-28 12:34:36,853 INFO L131 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * Trace refinement strategy=CAMEL [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2018-11-28 12:34:36,853 INFO L133 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(__VERIFIER_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 122860f60c237ba0e5aaff00f5b5723e95eecabf [2018-11-28 12:34:36,875 INFO L81 nceAwareModelManager]: Repository-Root is: /tmp [2018-11-28 12:34:36,883 INFO L258 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2018-11-28 12:34:36,886 INFO L214 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2018-11-28 12:34:36,887 INFO L271 PluginConnector]: Initializing CDTParser... [2018-11-28 12:34:36,887 INFO L276 PluginConnector]: CDTParser initialized [2018-11-28 12:34:36,887 INFO L418 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/../../sv-benchmarks/c/product-lines/email_spec9_product12_true-unreach-call_true-termination.cil.c [2018-11-28 12:34:36,924 INFO L221 CDTParser]: Created temporary CDT project at /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/data/ae6631449/93591579dbb747729bf68ea43d223762/FLAGbc8d9cc66 [2018-11-28 12:34:37,408 INFO L307 CDTParser]: Found 1 translation units. [2018-11-28 12:34:37,408 INFO L161 CDTParser]: Scanning /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/sv-benchmarks/c/product-lines/email_spec9_product12_true-unreach-call_true-termination.cil.c [2018-11-28 12:34:37,422 INFO L355 CDTParser]: About to delete temporary CDT project at /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/data/ae6631449/93591579dbb747729bf68ea43d223762/FLAGbc8d9cc66 [2018-11-28 12:34:37,905 INFO L363 CDTParser]: Successfully deleted /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/data/ae6631449/93591579dbb747729bf68ea43d223762 [2018-11-28 12:34:37,907 INFO L296 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2018-11-28 12:34:37,908 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2018-11-28 12:34:37,908 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2018-11-28 12:34:37,909 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2018-11-28 12:34:37,911 INFO L276 PluginConnector]: CACSL2BoogieTranslator initialized [2018-11-28 12:34:37,911 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 28.11 12:34:37" (1/1) ... [2018-11-28 12:34:37,913 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@64727c90 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:37, skipping insertion in model container [2018-11-28 12:34:37,913 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 28.11 12:34:37" (1/1) ... [2018-11-28 12:34:37,917 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2018-11-28 12:34:37,956 INFO L176 MainTranslator]: Built tables and reachable declarations [2018-11-28 12:34:38,305 INFO L203 PostProcessor]: Analyzing one entry point: main [2018-11-28 12:34:38,315 INFO L191 MainTranslator]: Completed pre-run [2018-11-28 12:34:38,394 INFO L203 PostProcessor]: Analyzing one entry point: main [2018-11-28 12:34:38,442 INFO L195 MainTranslator]: Completed translation [2018-11-28 12:34:38,442 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38 WrapperNode [2018-11-28 12:34:38,443 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2018-11-28 12:34:38,443 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2018-11-28 12:34:38,443 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2018-11-28 12:34:38,443 INFO L276 PluginConnector]: Boogie Procedure Inliner initialized [2018-11-28 12:34:38,451 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,474 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,482 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2018-11-28 12:34:38,483 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2018-11-28 12:34:38,483 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2018-11-28 12:34:38,483 INFO L276 PluginConnector]: Boogie Preprocessor initialized [2018-11-28 12:34:38,491 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,491 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,496 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,496 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,513 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,521 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,527 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... [2018-11-28 12:34:38,532 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2018-11-28 12:34:38,532 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2018-11-28 12:34:38,532 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2018-11-28 12:34:38,532 INFO L276 PluginConnector]: RCFGBuilder initialized [2018-11-28 12:34:38,533 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (1/1) ... No working directory specified, using /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/z3 Starting monitored process 1 with z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 1 with z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2018-11-28 12:34:38,581 INFO L130 BoogieDeclarations]: Found specification of procedure get_queued_client [2018-11-28 12:34:38,581 INFO L138 BoogieDeclarations]: Found implementation of procedure get_queued_client [2018-11-28 12:34:38,581 INFO L130 BoogieDeclarations]: Found specification of procedure rjhKeyChange [2018-11-28 12:34:38,581 INFO L138 BoogieDeclarations]: Found implementation of procedure rjhKeyChange [2018-11-28 12:34:38,581 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2018-11-28 12:34:38,582 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2018-11-28 12:34:38,582 INFO L130 BoogieDeclarations]: Found specification of procedure rjhKeyAdd [2018-11-28 12:34:38,582 INFO L138 BoogieDeclarations]: Found implementation of procedure rjhKeyAdd [2018-11-28 12:34:38,582 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.alloc [2018-11-28 12:34:38,582 INFO L130 BoogieDeclarations]: Found specification of procedure bobToRjh [2018-11-28 12:34:38,583 INFO L138 BoogieDeclarations]: Found implementation of procedure bobToRjh [2018-11-28 12:34:38,583 INFO L130 BoogieDeclarations]: Found specification of procedure setup_bob [2018-11-28 12:34:38,583 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_bob [2018-11-28 12:34:38,583 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2018-11-28 12:34:38,583 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2018-11-28 12:34:38,583 INFO L130 BoogieDeclarations]: Found specification of procedure select_features [2018-11-28 12:34:38,583 INFO L138 BoogieDeclarations]: Found implementation of procedure select_features [2018-11-28 12:34:38,583 INFO L130 BoogieDeclarations]: Found specification of procedure setup_bob__wrappee__Base [2018-11-28 12:34:38,583 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_bob__wrappee__Base [2018-11-28 12:34:38,584 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2018-11-28 12:34:38,584 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2018-11-28 12:34:38,584 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Keys [2018-11-28 12:34:38,584 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Keys [2018-11-28 12:34:38,584 INFO L130 BoogieDeclarations]: Found specification of procedure createEmail [2018-11-28 12:34:38,584 INFO L138 BoogieDeclarations]: Found implementation of procedure createEmail [2018-11-28 12:34:38,584 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2018-11-28 12:34:38,584 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2018-11-28 12:34:38,584 INFO L130 BoogieDeclarations]: Found specification of procedure get_queued_email [2018-11-28 12:34:38,585 INFO L138 BoogieDeclarations]: Found implementation of procedure get_queued_email [2018-11-28 12:34:38,585 INFO L130 BoogieDeclarations]: Found specification of procedure incoming__wrappee__Encrypt [2018-11-28 12:34:38,585 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming__wrappee__Encrypt [2018-11-28 12:34:38,585 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2018-11-28 12:34:38,585 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2018-11-28 12:34:38,585 INFO L130 BoogieDeclarations]: Found specification of procedure setup_rjh__wrappee__Base [2018-11-28 12:34:38,585 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_rjh__wrappee__Base [2018-11-28 12:34:38,585 INFO L130 BoogieDeclarations]: Found specification of procedure getClientId [2018-11-28 12:34:38,585 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientId [2018-11-28 12:34:38,586 INFO L130 BoogieDeclarations]: Found specification of procedure deliver [2018-11-28 12:34:38,586 INFO L138 BoogieDeclarations]: Found implementation of procedure deliver [2018-11-28 12:34:38,586 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2018-11-28 12:34:38,586 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2018-11-28 12:34:38,586 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2018-11-28 12:34:38,586 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2018-11-28 12:34:38,586 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2018-11-28 12:34:38,586 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2018-11-28 12:34:38,586 INFO L130 BoogieDeclarations]: Found specification of procedure getClientKeyringSize [2018-11-28 12:34:38,587 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientKeyringSize [2018-11-28 12:34:38,587 INFO L130 BoogieDeclarations]: Found specification of procedure bobKeyAdd [2018-11-28 12:34:38,587 INFO L138 BoogieDeclarations]: Found implementation of procedure bobKeyAdd [2018-11-28 12:34:38,587 INFO L130 BoogieDeclarations]: Found specification of procedure puts [2018-11-28 12:34:38,587 INFO L130 BoogieDeclarations]: Found specification of procedure setup_chuck__wrappee__Base [2018-11-28 12:34:38,587 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_chuck__wrappee__Base [2018-11-28 12:34:38,587 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.init [2018-11-28 12:34:38,587 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.init [2018-11-28 12:34:38,587 INFO L130 BoogieDeclarations]: Found specification of procedure __utac_acc__EncryptForward_spec__1 [2018-11-28 12:34:38,587 INFO L138 BoogieDeclarations]: Found implementation of procedure __utac_acc__EncryptForward_spec__1 [2018-11-28 12:34:38,588 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAddRjh [2018-11-28 12:34:38,588 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAddRjh [2018-11-28 12:34:38,588 INFO L130 BoogieDeclarations]: Found specification of procedure __utac_acc__EncryptForward_spec__2 [2018-11-28 12:34:38,588 INFO L138 BoogieDeclarations]: Found implementation of procedure __utac_acc__EncryptForward_spec__2 [2018-11-28 12:34:38,588 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringSize [2018-11-28 12:34:38,588 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringSize [2018-11-28 12:34:38,588 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2018-11-28 12:34:38,588 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2018-11-28 12:34:38,588 INFO L130 BoogieDeclarations]: Found specification of procedure bobKeyChange [2018-11-28 12:34:38,588 INFO L138 BoogieDeclarations]: Found implementation of procedure bobKeyChange [2018-11-28 12:34:38,589 INFO L130 BoogieDeclarations]: Found specification of procedure mail [2018-11-28 12:34:38,589 INFO L138 BoogieDeclarations]: Found implementation of procedure mail [2018-11-28 12:34:38,589 INFO L130 BoogieDeclarations]: Found specification of procedure valid_product [2018-11-28 12:34:38,589 INFO L138 BoogieDeclarations]: Found implementation of procedure valid_product [2018-11-28 12:34:38,589 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2018-11-28 12:34:38,589 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2018-11-28 12:34:38,589 INFO L130 BoogieDeclarations]: Found specification of procedure main [2018-11-28 12:34:38,589 INFO L138 BoogieDeclarations]: Found implementation of procedure main [2018-11-28 12:34:38,589 INFO L130 BoogieDeclarations]: Found specification of procedure setup_rjh [2018-11-28 12:34:38,590 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_rjh [2018-11-28 12:34:38,590 INFO L130 BoogieDeclarations]: Found specification of procedure incoming [2018-11-28 12:34:38,590 INFO L138 BoogieDeclarations]: Found implementation of procedure incoming [2018-11-28 12:34:38,590 INFO L130 BoogieDeclarations]: Found specification of procedure rjhDeletePrivateKey [2018-11-28 12:34:38,590 INFO L138 BoogieDeclarations]: Found implementation of procedure rjhDeletePrivateKey [2018-11-28 12:34:38,590 INFO L130 BoogieDeclarations]: Found specification of procedure test [2018-11-28 12:34:38,590 INFO L138 BoogieDeclarations]: Found implementation of procedure test [2018-11-28 12:34:38,590 INFO L130 BoogieDeclarations]: Found specification of procedure getClientKeyringUser [2018-11-28 12:34:38,590 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientKeyringUser [2018-11-28 12:34:38,590 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2018-11-28 12:34:38,590 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2018-11-28 12:34:38,591 INFO L130 BoogieDeclarations]: Found specification of procedure __automaton_fail [2018-11-28 12:34:38,591 INFO L138 BoogieDeclarations]: Found implementation of procedure __automaton_fail [2018-11-28 12:34:38,591 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2018-11-28 12:34:38,591 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2018-11-28 12:34:38,591 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2018-11-28 12:34:38,591 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2018-11-28 12:34:38,591 INFO L130 BoogieDeclarations]: Found specification of procedure select_helpers [2018-11-28 12:34:38,591 INFO L138 BoogieDeclarations]: Found implementation of procedure select_helpers [2018-11-28 12:34:38,591 INFO L130 BoogieDeclarations]: Found specification of procedure setup_chuck [2018-11-28 12:34:38,591 INFO L138 BoogieDeclarations]: Found implementation of procedure setup_chuck [2018-11-28 12:34:38,592 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2018-11-28 12:34:38,592 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2018-11-28 12:34:38,592 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2018-11-28 12:34:38,592 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2018-11-28 12:34:38,592 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2018-11-28 12:34:38,592 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2018-11-28 12:34:38,592 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2018-11-28 12:34:38,592 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2018-11-28 12:34:38,592 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2018-11-28 12:34:38,592 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2018-11-28 12:34:38,593 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2018-11-28 12:34:38,593 INFO L130 BoogieDeclarations]: Found specification of procedure is_queue_empty [2018-11-28 12:34:38,593 INFO L138 BoogieDeclarations]: Found implementation of procedure is_queue_empty [2018-11-28 12:34:38,593 INFO L130 BoogieDeclarations]: Found specification of procedure getClientKeyringPublicKey [2018-11-28 12:34:38,593 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientKeyringPublicKey [2018-11-28 12:34:38,593 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2018-11-28 12:34:38,593 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2018-11-28 12:34:38,593 INFO L130 BoogieDeclarations]: Found specification of procedure setup [2018-11-28 12:34:38,593 INFO L138 BoogieDeclarations]: Found implementation of procedure setup [2018-11-28 12:34:38,593 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2018-11-28 12:34:38,594 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2018-11-28 12:34:39,433 INFO L275 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2018-11-28 12:34:39,433 INFO L280 CfgBuilder]: Removed 1 assue(true) statements. [2018-11-28 12:34:39,434 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 12:34:39 BoogieIcfgContainer [2018-11-28 12:34:39,434 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2018-11-28 12:34:39,435 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2018-11-28 12:34:39,435 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2018-11-28 12:34:39,437 INFO L276 PluginConnector]: TraceAbstraction initialized [2018-11-28 12:34:39,437 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 28.11 12:34:37" (1/3) ... [2018-11-28 12:34:39,438 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@52ff023c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 28.11 12:34:39, skipping insertion in model container [2018-11-28 12:34:39,438 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 12:34:38" (2/3) ... [2018-11-28 12:34:39,438 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@52ff023c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 28.11 12:34:39, skipping insertion in model container [2018-11-28 12:34:39,439 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 12:34:39" (3/3) ... [2018-11-28 12:34:39,440 INFO L112 eAbstractionObserver]: Analyzing ICFG email_spec9_product12_true-unreach-call_true-termination.cil.c [2018-11-28 12:34:39,446 INFO L156 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2018-11-28 12:34:39,452 INFO L168 ceAbstractionStarter]: Appying trace abstraction to program that has 1 error locations. [2018-11-28 12:34:39,462 INFO L257 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2018-11-28 12:34:39,483 INFO L133 ementStrategyFactory]: Using default assertion order modulation [2018-11-28 12:34:39,484 INFO L382 AbstractCegarLoop]: Interprodecural is true [2018-11-28 12:34:39,484 INFO L383 AbstractCegarLoop]: Hoare is true [2018-11-28 12:34:39,484 INFO L384 AbstractCegarLoop]: Compute interpolants for FPandBP [2018-11-28 12:34:39,484 INFO L385 AbstractCegarLoop]: Backedges is STRAIGHT_LINE [2018-11-28 12:34:39,484 INFO L386 AbstractCegarLoop]: Determinization is PREDICATE_ABSTRACTION [2018-11-28 12:34:39,485 INFO L387 AbstractCegarLoop]: Difference is false [2018-11-28 12:34:39,485 INFO L388 AbstractCegarLoop]: Minimize is MINIMIZE_SEVPA [2018-11-28 12:34:39,485 INFO L393 AbstractCegarLoop]: ======== Iteration 0==of CEGAR loop == AllErrorsAtOnce======== [2018-11-28 12:34:39,505 INFO L276 IsEmpty]: Start isEmpty. Operand 394 states. [2018-11-28 12:34:39,518 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 146 [2018-11-28 12:34:39,519 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:39,520 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:39,521 INFO L423 AbstractCegarLoop]: === Iteration 1 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:39,525 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:39,525 INFO L82 PathProgramCache]: Analyzing trace with hash 1890665786, now seen corresponding path program 1 times [2018-11-28 12:34:39,526 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:39,527 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:39,556 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:39,557 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:39,557 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:39,700 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:39,798 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2018-11-28 12:34:39,800 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-28 12:34:39,800 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2018-11-28 12:34:39,803 INFO L459 AbstractCegarLoop]: Interpolant automaton has 2 states [2018-11-28 12:34:39,811 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2018-11-28 12:34:39,811 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2018-11-28 12:34:39,813 INFO L87 Difference]: Start difference. First operand 394 states. Second operand 2 states. [2018-11-28 12:34:39,860 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:39,860 INFO L93 Difference]: Finished difference Result 565 states and 753 transitions. [2018-11-28 12:34:39,860 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2018-11-28 12:34:39,861 INFO L78 Accepts]: Start accepts. Automaton has 2 states. Word has length 145 [2018-11-28 12:34:39,862 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:39,875 INFO L225 Difference]: With dead ends: 565 [2018-11-28 12:34:39,875 INFO L226 Difference]: Without dead ends: 383 [2018-11-28 12:34:39,878 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2018-11-28 12:34:39,890 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 383 states. [2018-11-28 12:34:39,922 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 383 to 383. [2018-11-28 12:34:39,923 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 383 states. [2018-11-28 12:34:39,925 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 383 states to 383 states and 514 transitions. [2018-11-28 12:34:39,926 INFO L78 Accepts]: Start accepts. Automaton has 383 states and 514 transitions. Word has length 145 [2018-11-28 12:34:39,927 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:39,927 INFO L480 AbstractCegarLoop]: Abstraction has 383 states and 514 transitions. [2018-11-28 12:34:39,928 INFO L481 AbstractCegarLoop]: Interpolant automaton has 2 states. [2018-11-28 12:34:39,928 INFO L276 IsEmpty]: Start isEmpty. Operand 383 states and 514 transitions. [2018-11-28 12:34:39,931 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 147 [2018-11-28 12:34:39,931 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:39,931 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:39,931 INFO L423 AbstractCegarLoop]: === Iteration 2 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:39,932 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:39,932 INFO L82 PathProgramCache]: Analyzing trace with hash -246000576, now seen corresponding path program 1 times [2018-11-28 12:34:39,932 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:39,932 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:39,933 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:39,933 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:39,933 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:39,972 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:40,097 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2018-11-28 12:34:40,097 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-28 12:34:40,098 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2018-11-28 12:34:40,102 INFO L459 AbstractCegarLoop]: Interpolant automaton has 3 states [2018-11-28 12:34:40,102 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2018-11-28 12:34:40,102 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-28 12:34:40,103 INFO L87 Difference]: Start difference. First operand 383 states and 514 transitions. Second operand 3 states. [2018-11-28 12:34:40,140 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:40,141 INFO L93 Difference]: Finished difference Result 548 states and 722 transitions. [2018-11-28 12:34:40,141 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2018-11-28 12:34:40,141 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 146 [2018-11-28 12:34:40,141 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:40,144 INFO L225 Difference]: With dead ends: 548 [2018-11-28 12:34:40,144 INFO L226 Difference]: Without dead ends: 386 [2018-11-28 12:34:40,146 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-28 12:34:40,147 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 386 states. [2018-11-28 12:34:40,168 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 386 to 385. [2018-11-28 12:34:40,168 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 385 states. [2018-11-28 12:34:40,170 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 385 states to 385 states and 516 transitions. [2018-11-28 12:34:40,171 INFO L78 Accepts]: Start accepts. Automaton has 385 states and 516 transitions. Word has length 146 [2018-11-28 12:34:40,171 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:40,171 INFO L480 AbstractCegarLoop]: Abstraction has 385 states and 516 transitions. [2018-11-28 12:34:40,171 INFO L481 AbstractCegarLoop]: Interpolant automaton has 3 states. [2018-11-28 12:34:40,172 INFO L276 IsEmpty]: Start isEmpty. Operand 385 states and 516 transitions. [2018-11-28 12:34:40,174 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 153 [2018-11-28 12:34:40,174 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:40,174 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:40,174 INFO L423 AbstractCegarLoop]: === Iteration 3 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:40,174 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:40,174 INFO L82 PathProgramCache]: Analyzing trace with hash -1779421556, now seen corresponding path program 1 times [2018-11-28 12:34:40,174 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:40,175 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:40,175 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:40,175 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:40,175 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:40,206 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:40,280 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2018-11-28 12:34:40,280 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-28 12:34:40,280 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2018-11-28 12:34:40,281 INFO L459 AbstractCegarLoop]: Interpolant automaton has 3 states [2018-11-28 12:34:40,281 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2018-11-28 12:34:40,281 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-28 12:34:40,282 INFO L87 Difference]: Start difference. First operand 385 states and 516 transitions. Second operand 3 states. [2018-11-28 12:34:40,318 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:40,318 INFO L93 Difference]: Finished difference Result 744 states and 1027 transitions. [2018-11-28 12:34:40,319 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2018-11-28 12:34:40,319 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 152 [2018-11-28 12:34:40,319 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:40,322 INFO L225 Difference]: With dead ends: 744 [2018-11-28 12:34:40,322 INFO L226 Difference]: Without dead ends: 424 [2018-11-28 12:34:40,323 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-28 12:34:40,324 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 424 states. [2018-11-28 12:34:40,339 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 424 to 423. [2018-11-28 12:34:40,340 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 423 states. [2018-11-28 12:34:40,341 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 423 states to 423 states and 582 transitions. [2018-11-28 12:34:40,342 INFO L78 Accepts]: Start accepts. Automaton has 423 states and 582 transitions. Word has length 152 [2018-11-28 12:34:40,342 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:40,342 INFO L480 AbstractCegarLoop]: Abstraction has 423 states and 582 transitions. [2018-11-28 12:34:40,342 INFO L481 AbstractCegarLoop]: Interpolant automaton has 3 states. [2018-11-28 12:34:40,342 INFO L276 IsEmpty]: Start isEmpty. Operand 423 states and 582 transitions. [2018-11-28 12:34:40,344 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 154 [2018-11-28 12:34:40,345 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:40,345 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:40,345 INFO L423 AbstractCegarLoop]: === Iteration 4 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:40,345 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:40,345 INFO L82 PathProgramCache]: Analyzing trace with hash -211762108, now seen corresponding path program 1 times [2018-11-28 12:34:40,345 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:40,346 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:40,346 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:40,346 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:40,346 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:40,379 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:40,449 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2018-11-28 12:34:40,449 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-28 12:34:40,449 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2018-11-28 12:34:40,449 INFO L459 AbstractCegarLoop]: Interpolant automaton has 3 states [2018-11-28 12:34:40,450 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2018-11-28 12:34:40,450 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-28 12:34:40,450 INFO L87 Difference]: Start difference. First operand 423 states and 582 transitions. Second operand 3 states. [2018-11-28 12:34:40,490 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:40,490 INFO L93 Difference]: Finished difference Result 639 states and 870 transitions. [2018-11-28 12:34:40,491 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2018-11-28 12:34:40,491 INFO L78 Accepts]: Start accepts. Automaton has 3 states. Word has length 153 [2018-11-28 12:34:40,491 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:40,494 INFO L225 Difference]: With dead ends: 639 [2018-11-28 12:34:40,494 INFO L226 Difference]: Without dead ends: 484 [2018-11-28 12:34:40,495 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2018-11-28 12:34:40,496 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 484 states. [2018-11-28 12:34:40,510 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 484 to 484. [2018-11-28 12:34:40,510 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 484 states. [2018-11-28 12:34:40,512 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 484 states to 484 states and 664 transitions. [2018-11-28 12:34:40,512 INFO L78 Accepts]: Start accepts. Automaton has 484 states and 664 transitions. Word has length 153 [2018-11-28 12:34:40,513 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:40,513 INFO L480 AbstractCegarLoop]: Abstraction has 484 states and 664 transitions. [2018-11-28 12:34:40,513 INFO L481 AbstractCegarLoop]: Interpolant automaton has 3 states. [2018-11-28 12:34:40,513 INFO L276 IsEmpty]: Start isEmpty. Operand 484 states and 664 transitions. [2018-11-28 12:34:40,516 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 250 [2018-11-28 12:34:40,517 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:40,517 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:40,517 INFO L423 AbstractCegarLoop]: === Iteration 5 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:40,517 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:40,517 INFO L82 PathProgramCache]: Analyzing trace with hash 1224264604, now seen corresponding path program 1 times [2018-11-28 12:34:40,517 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:40,518 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:40,518 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:40,518 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:40,518 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:40,547 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:40,790 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 16 proven. 8 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2018-11-28 12:34:40,791 INFO L300 seRefinementStrategy]: The current sequences of interpolants are not accepted, trying to find more. [2018-11-28 12:34:40,791 INFO L223 ckRefinementStrategy]: Switched to mode Z3_FP No working directory specified, using /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/z3 Starting monitored process 2 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 2 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 [2018-11-28 12:34:40,798 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:41,078 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:41,097 INFO L273 TraceCheckSpWp]: Computing forward predicates... [2018-11-28 12:34:41,388 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 24 proven. 0 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2018-11-28 12:34:41,405 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 1 imperfect interpolant sequences. [2018-11-28 12:34:41,405 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [9] imperfect sequences [21] total 28 [2018-11-28 12:34:41,406 INFO L459 AbstractCegarLoop]: Interpolant automaton has 28 states [2018-11-28 12:34:41,406 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2018-11-28 12:34:41,407 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=64, Invalid=692, Unknown=0, NotChecked=0, Total=756 [2018-11-28 12:34:41,407 INFO L87 Difference]: Start difference. First operand 484 states and 664 transitions. Second operand 28 states. [2018-11-28 12:34:46,802 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:46,802 INFO L93 Difference]: Finished difference Result 2290 states and 3154 transitions. [2018-11-28 12:34:46,802 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 85 states. [2018-11-28 12:34:46,802 INFO L78 Accepts]: Start accepts. Automaton has 28 states. Word has length 249 [2018-11-28 12:34:46,803 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:46,810 INFO L225 Difference]: With dead ends: 2290 [2018-11-28 12:34:46,810 INFO L226 Difference]: Without dead ends: 1836 [2018-11-28 12:34:46,814 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 373 GetRequests, 264 SyntacticMatches, 1 SemanticMatches, 108 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3383 ImplicationChecksByTransitivity, 1.4s TimeCoverageRelationStatistics Valid=859, Invalid=11131, Unknown=0, NotChecked=0, Total=11990 [2018-11-28 12:34:46,816 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1836 states. [2018-11-28 12:34:46,895 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1836 to 1657. [2018-11-28 12:34:46,896 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 1657 states. [2018-11-28 12:34:46,901 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1657 states to 1657 states and 2276 transitions. [2018-11-28 12:34:46,902 INFO L78 Accepts]: Start accepts. Automaton has 1657 states and 2276 transitions. Word has length 249 [2018-11-28 12:34:46,903 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:46,903 INFO L480 AbstractCegarLoop]: Abstraction has 1657 states and 2276 transitions. [2018-11-28 12:34:46,903 INFO L481 AbstractCegarLoop]: Interpolant automaton has 28 states. [2018-11-28 12:34:46,903 INFO L276 IsEmpty]: Start isEmpty. Operand 1657 states and 2276 transitions. [2018-11-28 12:34:46,909 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 253 [2018-11-28 12:34:46,910 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:46,910 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:46,910 INFO L423 AbstractCegarLoop]: === Iteration 6 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:46,910 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:46,910 INFO L82 PathProgramCache]: Analyzing trace with hash -705418477, now seen corresponding path program 1 times [2018-11-28 12:34:46,911 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:46,911 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:46,911 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:46,911 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:46,912 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:46,963 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:47,135 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 63 trivial. 0 not checked. [2018-11-28 12:34:47,136 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-28 12:34:47,136 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2018-11-28 12:34:47,136 INFO L459 AbstractCegarLoop]: Interpolant automaton has 5 states [2018-11-28 12:34:47,136 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2018-11-28 12:34:47,137 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2018-11-28 12:34:47,137 INFO L87 Difference]: Start difference. First operand 1657 states and 2276 transitions. Second operand 5 states. [2018-11-28 12:34:47,195 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:47,195 INFO L93 Difference]: Finished difference Result 2488 states and 3363 transitions. [2018-11-28 12:34:47,196 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2018-11-28 12:34:47,196 INFO L78 Accepts]: Start accepts. Automaton has 5 states. Word has length 252 [2018-11-28 12:34:47,196 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:47,200 INFO L225 Difference]: With dead ends: 2488 [2018-11-28 12:34:47,200 INFO L226 Difference]: Without dead ends: 1612 [2018-11-28 12:34:47,202 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2018-11-28 12:34:47,203 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1612 states. [2018-11-28 12:34:47,243 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1612 to 1612. [2018-11-28 12:34:47,243 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 1612 states. [2018-11-28 12:34:47,246 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1612 states to 1612 states and 2203 transitions. [2018-11-28 12:34:47,247 INFO L78 Accepts]: Start accepts. Automaton has 1612 states and 2203 transitions. Word has length 252 [2018-11-28 12:34:47,247 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:47,247 INFO L480 AbstractCegarLoop]: Abstraction has 1612 states and 2203 transitions. [2018-11-28 12:34:47,247 INFO L481 AbstractCegarLoop]: Interpolant automaton has 5 states. [2018-11-28 12:34:47,247 INFO L276 IsEmpty]: Start isEmpty. Operand 1612 states and 2203 transitions. [2018-11-28 12:34:47,252 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 253 [2018-11-28 12:34:47,252 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:47,252 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:47,252 INFO L423 AbstractCegarLoop]: === Iteration 7 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:47,252 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:47,252 INFO L82 PathProgramCache]: Analyzing trace with hash -238975134, now seen corresponding path program 1 times [2018-11-28 12:34:47,252 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:47,253 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:47,253 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:47,253 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:47,253 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:47,275 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:47,398 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 19 proven. 3 refuted. 0 times theorem prover too weak. 57 trivial. 0 not checked. [2018-11-28 12:34:47,398 INFO L300 seRefinementStrategy]: The current sequences of interpolants are not accepted, trying to find more. [2018-11-28 12:34:47,398 INFO L223 ckRefinementStrategy]: Switched to mode Z3_FP No working directory specified, using /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/z3 Starting monitored process 3 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 3 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 [2018-11-28 12:34:47,407 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:47,686 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:47,700 INFO L273 TraceCheckSpWp]: Computing forward predicates... [2018-11-28 12:34:47,819 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 24 proven. 0 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2018-11-28 12:34:47,836 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 1 imperfect interpolant sequences. [2018-11-28 12:34:47,837 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [7] imperfect sequences [14] total 19 [2018-11-28 12:34:47,837 INFO L459 AbstractCegarLoop]: Interpolant automaton has 19 states [2018-11-28 12:34:47,840 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 19 interpolants. [2018-11-28 12:34:47,840 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=39, Invalid=303, Unknown=0, NotChecked=0, Total=342 [2018-11-28 12:34:47,840 INFO L87 Difference]: Start difference. First operand 1612 states and 2203 transitions. Second operand 19 states. [2018-11-28 12:34:48,633 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:48,633 INFO L93 Difference]: Finished difference Result 3305 states and 4555 transitions. [2018-11-28 12:34:48,633 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2018-11-28 12:34:48,633 INFO L78 Accepts]: Start accepts. Automaton has 19 states. Word has length 252 [2018-11-28 12:34:48,633 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:48,639 INFO L225 Difference]: With dead ends: 3305 [2018-11-28 12:34:48,639 INFO L226 Difference]: Without dead ends: 1643 [2018-11-28 12:34:48,644 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 283 GetRequests, 249 SyntacticMatches, 0 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 130 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=122, Invalid=1138, Unknown=0, NotChecked=0, Total=1260 [2018-11-28 12:34:48,646 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1643 states. [2018-11-28 12:34:48,726 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1643 to 1575. [2018-11-28 12:34:48,726 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 1575 states. [2018-11-28 12:34:48,729 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1575 states to 1575 states and 2136 transitions. [2018-11-28 12:34:48,730 INFO L78 Accepts]: Start accepts. Automaton has 1575 states and 2136 transitions. Word has length 252 [2018-11-28 12:34:48,730 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:48,730 INFO L480 AbstractCegarLoop]: Abstraction has 1575 states and 2136 transitions. [2018-11-28 12:34:48,730 INFO L481 AbstractCegarLoop]: Interpolant automaton has 19 states. [2018-11-28 12:34:48,730 INFO L276 IsEmpty]: Start isEmpty. Operand 1575 states and 2136 transitions. [2018-11-28 12:34:48,733 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 253 [2018-11-28 12:34:48,733 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:48,733 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:48,733 INFO L423 AbstractCegarLoop]: === Iteration 8 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:48,734 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:48,734 INFO L82 PathProgramCache]: Analyzing trace with hash -892023046, now seen corresponding path program 1 times [2018-11-28 12:34:48,734 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:48,734 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:48,734 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:48,734 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:48,734 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:48,759 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:48,914 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 16 proven. 8 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2018-11-28 12:34:48,914 INFO L300 seRefinementStrategy]: The current sequences of interpolants are not accepted, trying to find more. [2018-11-28 12:34:48,915 INFO L223 ckRefinementStrategy]: Switched to mode Z3_FP No working directory specified, using /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/z3 Starting monitored process 4 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 4 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 [2018-11-28 12:34:48,921 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:49,125 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:49,134 INFO L273 TraceCheckSpWp]: Computing forward predicates... [2018-11-28 12:34:49,269 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 63 trivial. 0 not checked. [2018-11-28 12:34:49,286 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 1 imperfect interpolant sequences. [2018-11-28 12:34:49,286 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [9] imperfect sequences [17] total 24 [2018-11-28 12:34:49,286 INFO L459 AbstractCegarLoop]: Interpolant automaton has 24 states [2018-11-28 12:34:49,287 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2018-11-28 12:34:49,287 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=51, Invalid=501, Unknown=0, NotChecked=0, Total=552 [2018-11-28 12:34:49,287 INFO L87 Difference]: Start difference. First operand 1575 states and 2136 transitions. Second operand 24 states. [2018-11-28 12:34:53,067 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:53,067 INFO L93 Difference]: Finished difference Result 3629 states and 4913 transitions. [2018-11-28 12:34:53,067 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 81 states. [2018-11-28 12:34:53,067 INFO L78 Accepts]: Start accepts. Automaton has 24 states. Word has length 252 [2018-11-28 12:34:53,068 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:53,072 INFO L225 Difference]: With dead ends: 3629 [2018-11-28 12:34:53,072 INFO L226 Difference]: Without dead ends: 2092 [2018-11-28 12:34:53,076 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 368 GetRequests, 267 SyntacticMatches, 1 SemanticMatches, 100 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2892 ImplicationChecksByTransitivity, 0.9s TimeCoverageRelationStatistics Valid=774, Invalid=9528, Unknown=0, NotChecked=0, Total=10302 [2018-11-28 12:34:53,078 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2092 states. [2018-11-28 12:34:53,166 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2092 to 1654. [2018-11-28 12:34:53,166 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 1654 states. [2018-11-28 12:34:53,171 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1654 states to 1654 states and 2236 transitions. [2018-11-28 12:34:53,171 INFO L78 Accepts]: Start accepts. Automaton has 1654 states and 2236 transitions. Word has length 252 [2018-11-28 12:34:53,171 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:53,172 INFO L480 AbstractCegarLoop]: Abstraction has 1654 states and 2236 transitions. [2018-11-28 12:34:53,172 INFO L481 AbstractCegarLoop]: Interpolant automaton has 24 states. [2018-11-28 12:34:53,172 INFO L276 IsEmpty]: Start isEmpty. Operand 1654 states and 2236 transitions. [2018-11-28 12:34:53,176 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 256 [2018-11-28 12:34:53,176 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:53,177 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:53,177 INFO L423 AbstractCegarLoop]: === Iteration 9 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:53,177 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:53,177 INFO L82 PathProgramCache]: Analyzing trace with hash -1985321641, now seen corresponding path program 1 times [2018-11-28 12:34:53,177 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:53,177 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:53,178 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:53,178 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:53,178 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:53,212 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:53,333 INFO L134 CoverageAnalysis]: Checked inductivity of 80 backedges. 16 proven. 2 refuted. 0 times theorem prover too weak. 62 trivial. 0 not checked. [2018-11-28 12:34:53,333 INFO L300 seRefinementStrategy]: The current sequences of interpolants are not accepted, trying to find more. [2018-11-28 12:34:53,333 INFO L223 ckRefinementStrategy]: Switched to mode Z3_FP No working directory specified, using /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/z3 Starting monitored process 5 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 (exit command is (exit), workingDir is null) Waiting until toolchain timeout for monitored process 5 with z3 -smt2 -in SMTLIB2_COMPLIANT=true -t:12000 [2018-11-28 12:34:53,343 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:53,536 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:53,545 INFO L273 TraceCheckSpWp]: Computing forward predicates... [2018-11-28 12:34:53,635 INFO L134 CoverageAnalysis]: Checked inductivity of 80 backedges. 17 proven. 0 refuted. 0 times theorem prover too weak. 63 trivial. 0 not checked. [2018-11-28 12:34:53,651 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 1 imperfect interpolant sequences. [2018-11-28 12:34:53,651 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [9] imperfect sequences [5] total 12 [2018-11-28 12:34:53,652 INFO L459 AbstractCegarLoop]: Interpolant automaton has 12 states [2018-11-28 12:34:53,652 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2018-11-28 12:34:53,652 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=27, Invalid=105, Unknown=0, NotChecked=0, Total=132 [2018-11-28 12:34:53,652 INFO L87 Difference]: Start difference. First operand 1654 states and 2236 transitions. Second operand 12 states. [2018-11-28 12:34:54,805 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:54,805 INFO L93 Difference]: Finished difference Result 4798 states and 6488 transitions. [2018-11-28 12:34:54,805 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2018-11-28 12:34:54,805 INFO L78 Accepts]: Start accepts. Automaton has 12 states. Word has length 255 [2018-11-28 12:34:54,805 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:54,812 INFO L225 Difference]: With dead ends: 4798 [2018-11-28 12:34:54,812 INFO L226 Difference]: Without dead ends: 3215 [2018-11-28 12:34:54,816 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 278 GetRequests, 256 SyntacticMatches, 1 SemanticMatches, 21 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 44 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=95, Invalid=411, Unknown=0, NotChecked=0, Total=506 [2018-11-28 12:34:54,819 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 3215 states. [2018-11-28 12:34:54,944 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 3215 to 2706. [2018-11-28 12:34:54,944 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 2706 states. [2018-11-28 12:34:54,949 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2706 states to 2706 states and 3661 transitions. [2018-11-28 12:34:54,950 INFO L78 Accepts]: Start accepts. Automaton has 2706 states and 3661 transitions. Word has length 255 [2018-11-28 12:34:54,950 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:54,950 INFO L480 AbstractCegarLoop]: Abstraction has 2706 states and 3661 transitions. [2018-11-28 12:34:54,950 INFO L481 AbstractCegarLoop]: Interpolant automaton has 12 states. [2018-11-28 12:34:54,951 INFO L276 IsEmpty]: Start isEmpty. Operand 2706 states and 3661 transitions. [2018-11-28 12:34:54,957 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 257 [2018-11-28 12:34:54,957 INFO L394 BasicCegarLoop]: Found error trace [2018-11-28 12:34:54,958 INFO L402 BasicCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2018-11-28 12:34:54,958 INFO L423 AbstractCegarLoop]: === Iteration 10 === [__automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION]=== [2018-11-28 12:34:54,958 INFO L141 PredicateUnifier]: Initialized classic predicate unifier [2018-11-28 12:34:54,958 INFO L82 PathProgramCache]: Analyzing trace with hash 1318602179, now seen corresponding path program 1 times [2018-11-28 12:34:54,958 INFO L223 ckRefinementStrategy]: Switched to mode SMTINTERPOL_TREE_INTERPOLANTS [2018-11-28 12:34:54,958 INFO L69 tionRefinementEngine]: Using refinement strategy CamelRefinementStrategy [2018-11-28 12:34:54,959 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:54,959 INFO L103 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2018-11-28 12:34:54,959 INFO L119 rtionOrderModulation]: Craig_TreeInterpolation forces the order to NOT_INCREMENTALLY [2018-11-28 12:34:54,992 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2018-11-28 12:34:55,134 INFO L134 CoverageAnalysis]: Checked inductivity of 80 backedges. 16 proven. 0 refuted. 0 times theorem prover too weak. 64 trivial. 0 not checked. [2018-11-28 12:34:55,134 INFO L312 seRefinementStrategy]: Constructing automaton from 1 perfect and 0 imperfect interpolant sequences. [2018-11-28 12:34:55,134 INFO L327 seRefinementStrategy]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2018-11-28 12:34:55,135 INFO L459 AbstractCegarLoop]: Interpolant automaton has 10 states [2018-11-28 12:34:55,135 INFO L142 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2018-11-28 12:34:55,135 INFO L144 InterpolantAutomaton]: CoverageRelationStatistics Valid=18, Invalid=72, Unknown=0, NotChecked=0, Total=90 [2018-11-28 12:34:55,135 INFO L87 Difference]: Start difference. First operand 2706 states and 3661 transitions. Second operand 10 states. [2018-11-28 12:34:55,484 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2018-11-28 12:34:55,484 INFO L93 Difference]: Finished difference Result 2842 states and 3813 transitions. [2018-11-28 12:34:55,484 INFO L142 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2018-11-28 12:34:55,484 INFO L78 Accepts]: Start accepts. Automaton has 10 states. Word has length 256 [2018-11-28 12:34:55,485 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2018-11-28 12:34:55,485 INFO L225 Difference]: With dead ends: 2842 [2018-11-28 12:34:55,485 INFO L226 Difference]: Without dead ends: 0 [2018-11-28 12:34:55,490 INFO L631 BasicCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=48, Invalid=192, Unknown=0, NotChecked=0, Total=240 [2018-11-28 12:34:55,490 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2018-11-28 12:34:55,490 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2018-11-28 12:34:55,490 INFO L82 GeneralOperation]: Start removeUnreachable. Operand 0 states. [2018-11-28 12:34:55,490 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2018-11-28 12:34:55,491 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 256 [2018-11-28 12:34:55,491 INFO L84 Accepts]: Finished accepts. word is rejected. [2018-11-28 12:34:55,491 INFO L480 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2018-11-28 12:34:55,491 INFO L481 AbstractCegarLoop]: Interpolant automaton has 10 states. [2018-11-28 12:34:55,491 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2018-11-28 12:34:55,491 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2018-11-28 12:34:55,496 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2018-11-28 12:34:55,558 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,561 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,563 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,567 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,592 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,595 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,596 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,601 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,608 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,615 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,617 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,621 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,762 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,764 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,765 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,768 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,792 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,794 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,795 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,797 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,878 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,880 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,881 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,968 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,970 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,971 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:55,973 WARN L250 erpolLogProxyWrapper]: Already inconsistent. [2018-11-28 12:34:58,370 INFO L448 ceAbstractionStarter]: For program point bobKeyChangeFINAL(lines 1061 1070) no Hoare annotation was computed. [2018-11-28 12:34:58,370 INFO L448 ceAbstractionStarter]: For program point bobKeyChangeEXIT(lines 1061 1070) no Hoare annotation was computed. [2018-11-28 12:34:58,370 INFO L451 ceAbstractionStarter]: At program point bobKeyChangeENTRY(lines 1061 1070) the Hoare annotation is: true [2018-11-28 12:34:58,370 INFO L444 ceAbstractionStarter]: At program point mailENTRY(lines 177 191) the Hoare annotation is: (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse1 (= 0 ~in_encrypted~0)) (.cse2 (< ~rjh~0 2))) (and (or .cse0 (not (= ~queue_empty~0 1)) .cse1 .cse2 (< ~chuck~0 3)) (or .cse0 .cse1 (= |mail_#in~msg| 1) .cse2))) [2018-11-28 12:34:58,370 INFO L444 ceAbstractionStarter]: At program point L187(line 187) the Hoare annotation is: (let ((.cse1 (= |mail_#in~msg| 1)) (.cse4 (= 0 ~in_encrypted~0)) (.cse5 (= |mail_#in~msg| mail_~msg))) (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (and (not .cse1) .cse4 .cse5)) (.cse3 (< ~rjh~0 2))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse0 (and (= ~__ste_email_to0~0 mail_~tmp~1) .cse4 .cse5) (not (= ~queue_empty~0 1)) .cse2 .cse3 (< ~chuck~0 3))))) [2018-11-28 12:34:58,370 INFO L448 ceAbstractionStarter]: For program point mailEXIT(lines 177 191) no Hoare annotation was computed. [2018-11-28 12:34:58,370 INFO L444 ceAbstractionStarter]: At program point L186(line 186) the Hoare annotation is: (let ((.cse1 (and (= 0 ~in_encrypted~0) (= |mail_#in~msg| mail_~msg))) (.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (< ~rjh~0 2))) (and (or .cse0 (= |mail_#in~msg| 1) .cse1 .cse2) (or .cse1 .cse0 (not (= ~queue_empty~0 1)) .cse2 (< ~chuck~0 3)))) [2018-11-28 12:34:58,370 INFO L448 ceAbstractionStarter]: For program point L186-1(line 186) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L444 ceAbstractionStarter]: At program point L184(line 184) the Hoare annotation is: (let ((.cse1 (and (= 0 ~in_encrypted~0) (= |mail_#in~msg| mail_~msg))) (.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (< ~rjh~0 2))) (and (or .cse0 (= |mail_#in~msg| 1) .cse1 .cse2) (or .cse1 .cse0 (not (= ~queue_empty~0 1)) .cse2 (< ~chuck~0 3)))) [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point L184-1(line 184) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point mailFINAL(lines 177 191) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point valid_productEXIT(lines 141 149) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L451 ceAbstractionStarter]: At program point valid_productENTRY(lines 141 149) the Hoare annotation is: true [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point valid_productFINAL(lines 141 149) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point get_queued_clientEXIT(lines 342 350) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L451 ceAbstractionStarter]: At program point get_queued_clientENTRY(lines 342 350) the Hoare annotation is: true [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point get_queued_clientFINAL(lines 342 350) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point L369(lines 369 379) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point isKeyPairValidEXIT(lines 360 384) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L451 ceAbstractionStarter]: At program point isKeyPairValidENTRY(lines 360 384) the Hoare annotation is: true [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point isKeyPairValidFINAL(lines 360 384) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point L373(lines 373 378) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L444 ceAbstractionStarter]: At program point L960(line 960) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= main_~tmp~8 ~queue_empty~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0))) [2018-11-28 12:34:58,371 INFO L444 ceAbstractionStarter]: At program point L960-1(line 960) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (and (<= 3 ~chuck~0) (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (<= 2 ~rjh~0) (= main_~tmp~8 ~queue_empty~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0))) [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point L958(lines 958 965) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L444 ceAbstractionStarter]: At program point mainENTRY(lines 948 968) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0)) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|))) [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point L958-1(lines 958 965) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L448 ceAbstractionStarter]: For program point L956(line 956) no Hoare annotation was computed. [2018-11-28 12:34:58,371 INFO L444 ceAbstractionStarter]: At program point L955(line 955) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0)) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|))) [2018-11-28 12:34:58,372 INFO L444 ceAbstractionStarter]: At program point L954(line 954) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0)) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|))) [2018-11-28 12:34:58,372 INFO L444 ceAbstractionStarter]: At program point L954-1(line 954) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0)) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|))) [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point mainEXIT(lines 948 968) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point mainFINAL(lines 948 968) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L451 ceAbstractionStarter]: At program point rjhKeyChangeENTRY(lines 1071 1080) the Hoare annotation is: true [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point rjhKeyChangeEXIT(lines 1071 1080) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point rjhKeyChangeFINAL(lines 1071 1080) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L444 ceAbstractionStarter]: At program point L864(line 864) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (<= |setup_rjh_#in~rjh___0| setup_rjh_~rjh___0) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (< ~rjh~0 2) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0))) [2018-11-28 12:34:58,372 INFO L444 ceAbstractionStarter]: At program point L864-1(line 864) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (<= |setup_rjh_#in~rjh___0| setup_rjh_~rjh___0) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (< ~rjh~0 2) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0))) [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point setup_rjhFINAL(lines 859 869) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L451 ceAbstractionStarter]: At program point setup_rjhENTRY(lines 859 869) the Hoare annotation is: true [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point setup_rjhEXIT(lines 859 869) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L451 ceAbstractionStarter]: At program point getClientPrivateKeyENTRY(lines 2150 2173) the Hoare annotation is: true [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point L2158(lines 2158 2169) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point L2154(lines 2154 2170) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point getClientPrivateKeyEXIT(lines 2150 2173) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point getClientPrivateKeyFINAL(lines 2150 2173) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point L2162(lines 2162 2168) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point rjhKeyAddFINAL(lines 991 1002) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L448 ceAbstractionStarter]: For program point rjhKeyAddEXIT(lines 991 1002) no Hoare annotation was computed. [2018-11-28 12:34:58,372 INFO L444 ceAbstractionStarter]: At program point rjhKeyAddENTRY(lines 991 1002) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,373 INFO L444 ceAbstractionStarter]: At program point L997(line 997) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point L996(line 996) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L451 ceAbstractionStarter]: At program point L997-1(line 997) the Hoare annotation is: true [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point bobToRjhEXIT(lines 891 913) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L444 ceAbstractionStarter]: At program point bobToRjhENTRY(lines 891 913) the Hoare annotation is: (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse1 (not (= ~queue_empty~0 1))) (.cse2 (< ~rjh~0 2)) (.cse3 (< ~chuck~0 3))) (and (or .cse0 .cse1 (= 0 ~in_encrypted~0) .cse2 .cse3) (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) .cse0 .cse1 .cse2 (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse3))) [2018-11-28 12:34:58,373 INFO L444 ceAbstractionStarter]: At program point L908(line 908) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,373 INFO L444 ceAbstractionStarter]: At program point L907(line 907) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point L908-1(lines 891 913) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L444 ceAbstractionStarter]: At program point L906(line 906) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point L907-1(line 907) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point L906-1(line 906) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point L902(lines 902 910) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point L900(line 900) no Hoare annotation was computed. [2018-11-28 12:34:58,373 INFO L444 ceAbstractionStarter]: At program point L899(line 899) the Hoare annotation is: (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse1 (not (= ~queue_empty~0 1))) (.cse2 (< ~rjh~0 2)) (.cse3 (< ~chuck~0 3))) (and (or .cse0 .cse1 (= 0 ~in_encrypted~0) .cse2 .cse3) (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) .cse0 .cse1 .cse2 (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse3))) [2018-11-28 12:34:58,373 INFO L451 ceAbstractionStarter]: At program point L899-1(line 899) the Hoare annotation is: true [2018-11-28 12:34:58,373 INFO L451 ceAbstractionStarter]: At program point L843(line 843) the Hoare annotation is: true [2018-11-28 12:34:58,373 INFO L451 ceAbstractionStarter]: At program point setup_bobENTRY(lines 838 848) the Hoare annotation is: true [2018-11-28 12:34:58,373 INFO L451 ceAbstractionStarter]: At program point L843-1(line 843) the Hoare annotation is: true [2018-11-28 12:34:58,373 INFO L448 ceAbstractionStarter]: For program point setup_bobFINAL(lines 838 848) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point setup_bobEXIT(lines 838 848) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L451 ceAbstractionStarter]: At program point setEmailEncryptionKeyENTRY(lines 674 689) the Hoare annotation is: true [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point L681(lines 681 685) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point setEmailEncryptionKeyEXIT(lines 674 689) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point L681-2(lines 674 689) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point L678(lines 678 686) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point select_featuresEXIT(lines 127 133) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L451 ceAbstractionStarter]: At program point select_featuresFINAL(lines 127 133) the Hoare annotation is: true [2018-11-28 12:34:58,374 INFO L451 ceAbstractionStarter]: At program point L833(line 833) the Hoare annotation is: true [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point setup_bob__wrappee__BaseFINAL(lines 828 837) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L451 ceAbstractionStarter]: At program point setup_bob__wrappee__BaseENTRY(lines 828 837) the Hoare annotation is: true [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point setup_bob__wrappee__BaseEXIT(lines 828 837) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point getEmailEncryptionKeyEXIT(lines 655 673) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point L663(lines 663 669) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L451 ceAbstractionStarter]: At program point getEmailEncryptionKeyENTRY(lines 655 673) the Hoare annotation is: true [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point getEmailEncryptionKeyFINAL(lines 655 673) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point L659(lines 659 670) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L444 ceAbstractionStarter]: At program point outgoing__wrappee__KeysENTRY(lines 192 203) the Hoare annotation is: (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (< ~rjh~0 2)) (.cse1 (= 0 ~in_encrypted~0))) (and (or .cse0 (not (= ~queue_empty~0 1)) .cse1 .cse2 (< ~chuck~0 3)) (or (= |outgoing__wrappee__Keys_#in~msg| 1) .cse0 .cse2 .cse1))) [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point outgoing__wrappee__KeysEXIT(lines 192 203) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L448 ceAbstractionStarter]: For program point outgoing__wrappee__KeysFINAL(lines 192 203) no Hoare annotation was computed. [2018-11-28 12:34:58,374 INFO L444 ceAbstractionStarter]: At program point L198(line 198) the Hoare annotation is: (let ((.cse1 (and (= |outgoing__wrappee__Keys_#in~msg| outgoing__wrappee__Keys_~msg) (= 0 ~in_encrypted~0))) (.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (< ~rjh~0 2))) (and (or (= |outgoing__wrappee__Keys_#in~msg| 1) .cse0 .cse1 .cse2) (or .cse1 .cse0 (not (= ~queue_empty~0 1)) .cse2 (< ~chuck~0 3)))) [2018-11-28 12:34:58,374 INFO L444 ceAbstractionStarter]: At program point L197(line 197) the Hoare annotation is: (let ((.cse1 (and (= |outgoing__wrappee__Keys_#in~msg| outgoing__wrappee__Keys_~msg) (= 0 ~in_encrypted~0))) (.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (< ~rjh~0 2))) (and (or (= |outgoing__wrappee__Keys_#in~msg| 1) .cse0 .cse1 .cse2) (or .cse1 .cse0 (not (= ~queue_empty~0 1)) .cse2 (< ~chuck~0 3)))) [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L198-1(line 198) the Hoare annotation is: (let ((.cse1 (and (= |outgoing__wrappee__Keys_#in~msg| outgoing__wrappee__Keys_~msg) (= 0 ~in_encrypted~0))) (.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse2 (< ~rjh~0 2))) (and (or (= |outgoing__wrappee__Keys_#in~msg| 1) .cse0 .cse1 .cse2) (or .cse1 .cse0 (not (= ~queue_empty~0 1)) .cse2 (< ~chuck~0 3)))) [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L197-1(line 197) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point incomingFINAL(lines 251 294) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point incomingENTRY(lines 251 294) the Hoare annotation is: (or (= 0 ~in_encrypted~0) (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2)) [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L277(line 277) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L277-1(line 277) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L275(lines 275 282) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L273(line 273) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L273-1(line 273) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L263(line 263) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point incomingEXIT(lines 251 294) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L272(line 272) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L272-1(line 272) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L270(lines 270 285) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L268(line 268) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L268-1(line 268) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L266(lines 266 288) no Hoare annotation was computed. [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L266-1(lines 266 288) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L262(line 262) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (and (= 0 ~in_encrypted~0) (= |incoming_#in~client| incoming_~client))) [2018-11-28 12:34:58,375 INFO L444 ceAbstractionStarter]: At program point L262-1(line 262) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (< ~rjh~0 2) (= |incoming_#in~client| incoming_~client)) [2018-11-28 12:34:58,375 INFO L448 ceAbstractionStarter]: For program point L1553(line 1553) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L444 ceAbstractionStarter]: At program point L1552(line 1552) the Hoare annotation is: (let ((.cse0 (not (= ~in_encrypted~0 0))) (.cse1 (not (= ~queue_empty~0 1))) (.cse2 (< ~rjh~0 2)) (.cse3 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 (= 1 createEmail_~msg~0)) (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) .cse0 .cse1 .cse2 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) .cse3))) [2018-11-28 12:34:58,376 INFO L444 ceAbstractionStarter]: At program point L1552-1(line 1552) the Hoare annotation is: (let ((.cse0 (not (= ~in_encrypted~0 0))) (.cse1 (not (= ~queue_empty~0 1))) (.cse2 (< ~rjh~0 2)) (.cse3 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 (= 1 createEmail_~msg~0)) (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) .cse0 .cse1 .cse2 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) .cse3))) [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point createEmailEXIT(lines 1545 1559) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L444 ceAbstractionStarter]: At program point createEmailENTRY(lines 1545 1559) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) (< ~chuck~0 3)) [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point createEmailFINAL(lines 1545 1559) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L451 ceAbstractionStarter]: At program point rjhDeletePrivateKeyENTRY(lines 1051 1060) the Hoare annotation is: true [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point rjhDeletePrivateKeyEXIT(lines 1051 1060) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point rjhDeletePrivateKeyFINAL(lines 1051 1060) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L444 ceAbstractionStarter]: At program point L2736(line 2736) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point L2670(lines 2669 2833) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point L2736-1(line 2736) no Hoare annotation was computed. [2018-11-28 12:34:58,376 INFO L448 ceAbstractionStarter]: For program point L2761-1(line 2761) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2761(line 2761) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2695(lines 2695 2699) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2786(line 2786) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2720(lines 2720 2727) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2786-1(line 2786) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2671(lines 2671 2675) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2729(lines 2716 2829) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2754(lines 2744 2827) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point testEXIT(lines 2630 2841) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point testENTRY(lines 2630 2841) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2812(lines 2812 2819) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2779(lines 2769 2825) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2812-1(lines 2669 2833) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point testFINAL(lines 2630 2841) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L444 ceAbstractionStarter]: At program point L2722(line 2722) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2722-1(line 2722) no Hoare annotation was computed. [2018-11-28 12:34:58,377 INFO L448 ceAbstractionStarter]: For program point L2681(lines 2681 2688) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2706(lines 2706 2713) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2690(lines 2677 2832) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2814(line 2814) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2748(lines 2748 2752) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2814-1(line 2814) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2715(lines 2702 2830) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2773(lines 2773 2777) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2798(lines 2798 2805) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2683-1(line 2683) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2683(line 2683) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (and (= test_~op1~0 0) (= 0 ~in_encrypted~0)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2807(lines 2794 2823) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2708(line 2708) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2708-1(line 2708) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2800(line 2800) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2734(lines 2734 2741) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2800-1(line 2800) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2701(lines 2691 2831) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2759(lines 2759 2766) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2784(lines 2784 2791) no Hoare annotation was computed. [2018-11-28 12:34:58,378 INFO L444 ceAbstractionStarter]: At program point L2743(lines 2730 2828) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,378 INFO L448 ceAbstractionStarter]: For program point L2677(lines 2677 2832) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L444 ceAbstractionStarter]: At program point L2834(lines 2668 2835) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,379 INFO L444 ceAbstractionStarter]: At program point L2768(lines 2755 2826) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,379 INFO L444 ceAbstractionStarter]: At program point L2793(lines 2780 2824) the Hoare annotation is: (or (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|)) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| |old(~__ste_Client_Keyring0_User0~0)|)) (< ~chuck~0 3)) [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L511(lines 511 517) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point getEmailToFINAL(lines 503 521) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L507(lines 507 518) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point getEmailToEXIT(lines 503 521) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L451 ceAbstractionStarter]: At program point getEmailToENTRY(lines 503 521) the Hoare annotation is: true [2018-11-28 12:34:58,379 INFO L451 ceAbstractionStarter]: At program point get_queued_emailENTRY(lines 351 359) the Hoare annotation is: true [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point get_queued_emailFINAL(lines 351 359) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point get_queued_emailEXIT(lines 351 359) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point getClientKeyringUserEXIT(lines 2275 2328) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2298(lines 2298 2304) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2294(lines 2294 2305) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2284(lines 2284 2290) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2280(lines 2280 2291) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point getClientKeyringUserFINAL(lines 2275 2328) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2307(lines 2307 2323) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L451 ceAbstractionStarter]: At program point getClientKeyringUserENTRY(lines 2275 2328) the Hoare annotation is: true [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2293(lines 2293 2324) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2312(lines 2312 2318) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2279(lines 2279 2325) no Hoare annotation was computed. [2018-11-28 12:34:58,379 INFO L448 ceAbstractionStarter]: For program point L2308(lines 2308 2319) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2337(lines 2337 2341) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L444 ceAbstractionStarter]: At program point setClientKeyringUserENTRY(lines 2329 2372) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2333(lines 2333 2369) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2356(lines 2356 2364) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2348(lines 2348 2352) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2344(lines 2344 2368) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point setClientKeyringUserEXIT(lines 2329 2372) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2334(lines 2334 2342) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2359(lines 2359 2363) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2355-1(lines 2329 2372) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2355(lines 2355 2367) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L2345(lines 2345 2353) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point incoming__wrappee__EncryptFINAL(lines 241 250) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L451 ceAbstractionStarter]: At program point incoming__wrappee__EncryptENTRY(lines 241 250) the Hoare annotation is: true [2018-11-28 12:34:58,380 INFO L451 ceAbstractionStarter]: At program point L246(line 246) the Hoare annotation is: true [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point incoming__wrappee__EncryptEXIT(lines 241 250) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L451 ceAbstractionStarter]: At program point setEmailFromENTRY(lines 485 500) the Hoare annotation is: true [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L492(lines 492 496) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point setEmailFromEXIT(lines 485 500) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L492-2(lines 485 500) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point L489(lines 489 497) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L448 ceAbstractionStarter]: For program point __automaton_failFINAL(lines 1448 1455) no Hoare annotation was computed. [2018-11-28 12:34:58,380 INFO L451 ceAbstractionStarter]: At program point __automaton_failENTRY(lines 1448 1455) the Hoare annotation is: true [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point __automaton_failErr0ASSERT_VIOLATIONERROR_FUNCTION(line 1452) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point __automaton_failEXIT(lines 1448 1455) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2494(lines 2494 2530) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point setClientKeyringPublicKeyEXIT(lines 2490 2533) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2517(lines 2517 2525) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2509(lines 2509 2513) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2505(lines 2505 2529) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2495(lines 2495 2503) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2520(lines 2520 2524) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L451 ceAbstractionStarter]: At program point setClientKeyringPublicKeyENTRY(lines 2490 2533) the Hoare annotation is: true [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2516(lines 2516 2528) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2516-1(lines 2490 2533) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2506(lines 2506 2514) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point L2498(lines 2498 2502) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L451 ceAbstractionStarter]: At program point setup_rjh__wrappee__BaseENTRY(lines 849 858) the Hoare annotation is: true [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point setup_rjh__wrappee__BaseFINAL(lines 849 858) no Hoare annotation was computed. [2018-11-28 12:34:58,381 INFO L444 ceAbstractionStarter]: At program point L854(line 854) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (<= |setup_rjh__wrappee__Base_#in~rjh___0| setup_rjh__wrappee__Base_~rjh___0) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (< ~rjh~0 2) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0))) [2018-11-28 12:34:58,381 INFO L448 ceAbstractionStarter]: For program point setup_rjh__wrappee__BaseEXIT(lines 849 858) no Hoare annotation was computed. [2018-11-28 12:34:58,382 INFO L444 ceAbstractionStarter]: At program point L219(line 219) the Hoare annotation is: (let ((.cse0 (= |outgoing_#in~msg| outgoing_~msg)) (.cse1 (= 0 ~in_encrypted~0))) (or (and (= outgoing_~receiver~0 ~__ste_email_to0~0) .cse0 .cse1) (and (not (= |outgoing_#in~msg| 1)) .cse0 .cse1) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3))) [2018-11-28 12:34:58,382 INFO L444 ceAbstractionStarter]: At program point L219-1(line 219) the Hoare annotation is: (let ((.cse0 (= |outgoing_#in~msg| outgoing_~msg)) (.cse1 (= 0 ~in_encrypted~0))) (or (and (= outgoing_~receiver~0 ~__ste_email_to0~0) .cse0 .cse1) (and (not (= |outgoing_#in~msg| 1)) .cse0 .cse1) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3))) [2018-11-28 12:34:58,382 INFO L448 ceAbstractionStarter]: For program point L217(lines 217 224) no Hoare annotation was computed. [2018-11-28 12:34:58,382 INFO L444 ceAbstractionStarter]: At program point L217-1(lines 217 224) the Hoare annotation is: (let ((.cse0 (= |outgoing_#in~msg| outgoing_~msg)) (.cse1 (= 0 ~in_encrypted~0))) (or (and (= outgoing_~receiver~0 ~__ste_email_to0~0) .cse0 .cse1) (and (not (= |outgoing_#in~msg| 1)) .cse0 .cse1) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3))) [2018-11-28 12:34:58,382 INFO L448 ceAbstractionStarter]: For program point outgoingEXIT(lines 204 230) no Hoare annotation was computed. [2018-11-28 12:34:58,382 INFO L444 ceAbstractionStarter]: At program point L214(line 214) the Hoare annotation is: (let ((.cse0 (= |outgoing_#in~msg| outgoing_~msg)) (.cse1 (= 0 ~in_encrypted~0))) (or (and (= outgoing_~receiver~0 ~__ste_email_to0~0) .cse0 .cse1) (and (not (= |outgoing_#in~msg| 1)) .cse0 .cse1) (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3))) [2018-11-28 12:34:58,382 INFO L448 ceAbstractionStarter]: For program point L214-1(line 214) no Hoare annotation was computed. [2018-11-28 12:34:58,382 INFO L444 ceAbstractionStarter]: At program point outgoingENTRY(lines 204 230) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,382 INFO L444 ceAbstractionStarter]: At program point L212(line 212) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (and (= |outgoing_#in~msg| outgoing_~msg) (= 0 ~in_encrypted~0)) (< ~chuck~0 3)) [2018-11-28 12:34:58,382 INFO L448 ceAbstractionStarter]: For program point L212-1(line 212) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point outgoingFINAL(lines 204 230) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L451 ceAbstractionStarter]: At program point select_helpersFINAL(lines 134 140) the Hoare annotation is: true [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point select_helpersEXIT(lines 134 140) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point getClientIdFINAL(lines 2585 2608) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point L2593(lines 2593 2604) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point L2589(lines 2589 2605) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L451 ceAbstractionStarter]: At program point getClientIdENTRY(lines 2585 2608) the Hoare annotation is: true [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point getClientIdEXIT(lines 2585 2608) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point L2597(lines 2597 2603) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point deliverFINAL(lines 231 240) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L451 ceAbstractionStarter]: At program point deliverENTRY(lines 231 240) the Hoare annotation is: true [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point deliverEXIT(lines 231 240) no Hoare annotation was computed. [2018-11-28 12:34:58,383 INFO L448 ceAbstractionStarter]: For program point L2255-1(line 2255) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L451 ceAbstractionStarter]: At program point L2255(line 2255) the Hoare annotation is: true [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point createClientKeyringEntryEXIT(lines 2241 2265) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point L2252(lines 2252 2262) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point L2249-1(line 2249) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L451 ceAbstractionStarter]: At program point L2249(line 2249) the Hoare annotation is: true [2018-11-28 12:34:58,384 INFO L451 ceAbstractionStarter]: At program point createClientKeyringEntryENTRY(lines 2241 2265) the Hoare annotation is: true [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point createClientKeyringEntryFINAL(lines 2241 2265) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point setup_chuckEXIT(lines 880 890) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L451 ceAbstractionStarter]: At program point setup_chuckENTRY(lines 880 890) the Hoare annotation is: true [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point setup_chuckFINAL(lines 880 890) no Hoare annotation was computed. [2018-11-28 12:34:58,384 INFO L444 ceAbstractionStarter]: At program point L885(line 885) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (<= |setup_chuck_#in~chuck___0| setup_chuck_~chuck___0) (< ~rjh~0 2) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0)) (< ~chuck~0 3)) [2018-11-28 12:34:58,384 INFO L444 ceAbstractionStarter]: At program point L885-1(line 885) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (<= |setup_chuck_#in~chuck___0| setup_chuck_~chuck___0) (< ~rjh~0 2) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0)) (< ~chuck~0 3)) [2018-11-28 12:34:58,384 INFO L448 ceAbstractionStarter]: For program point L2459(lines 2459 2465) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2455(lines 2455 2466) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2445(lines 2445 2451) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2441(lines 2441 2452) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2468(lines 2468 2484) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2454(lines 2454 2485) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point findPublicKeyFINAL(lines 2436 2489) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2440(lines 2440 2486) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2473(lines 2473 2479) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point findPublicKeyEXIT(lines 2436 2489) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point L2469(lines 2469 2480) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L451 ceAbstractionStarter]: At program point findPublicKeyENTRY(lines 2436 2489) the Hoare annotation is: true [2018-11-28 12:34:58,385 INFO L448 ceAbstractionStarter]: For program point sendEmailEXIT(lines 310 322) no Hoare annotation was computed. [2018-11-28 12:34:58,385 INFO L444 ceAbstractionStarter]: At program point L318(line 318) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (and (= 0 ~in_encrypted~0) (= 1 sendEmail_~email~0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,386 INFO L444 ceAbstractionStarter]: At program point sendEmailENTRY(lines 310 322) the Hoare annotation is: (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse1 (not (= ~queue_empty~0 1))) (.cse2 (< ~rjh~0 2)) (.cse3 (< ~chuck~0 3))) (and (or .cse0 .cse1 (= 0 ~in_encrypted~0) .cse2 .cse3) (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) .cse0 .cse1 .cse2 (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse3))) [2018-11-28 12:34:58,386 INFO L444 ceAbstractionStarter]: At program point L316(line 316) the Hoare annotation is: (let ((.cse0 (not (= |old(~in_encrypted~0)| 0))) (.cse1 (not (= ~queue_empty~0 1))) (.cse2 (< ~rjh~0 2)) (.cse3 (< ~chuck~0 3))) (and (or .cse0 .cse1 (= 0 ~in_encrypted~0) .cse2 .cse3) (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) .cse0 .cse1 .cse2 (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse3))) [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point sendEmailFINAL(lines 310 322) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point L316-1(line 316) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point L622(lines 622 633) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point isEncryptedFINAL(lines 618 636) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point isEncryptedEXIT(lines 618 636) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L451 ceAbstractionStarter]: At program point isEncryptedENTRY(lines 618 636) the Hoare annotation is: true [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point L626(lines 626 632) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point L641(lines 641 649) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L448 ceAbstractionStarter]: For program point setEmailIsEncryptedEXIT(lines 637 652) no Hoare annotation was computed. [2018-11-28 12:34:58,386 INFO L451 ceAbstractionStarter]: At program point setEmailIsEncryptedENTRY(lines 637 652) the Hoare annotation is: true [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L644(lines 644 648) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L644-2(lines 637 652) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L451 ceAbstractionStarter]: At program point setClientPrivateKeyENTRY(lines 2174 2193) the Hoare annotation is: true [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point setClientPrivateKeyEXIT(lines 2174 2193) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L2184(lines 2184 2188) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L2184-2(lines 2174 2193) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L2181(lines 2181 2189) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L2178(lines 2178 2190) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point chuckKeyAddEXIT(lines 1027 1038) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L444 ceAbstractionStarter]: At program point L1033(line 1033) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,387 INFO L448 ceAbstractionStarter]: For program point L1032(line 1032) no Hoare annotation was computed. [2018-11-28 12:34:58,387 INFO L451 ceAbstractionStarter]: At program point L1033-1(line 1033) the Hoare annotation is: true [2018-11-28 12:34:58,388 INFO L444 ceAbstractionStarter]: At program point chuckKeyAddENTRY(lines 1027 1038) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point chuckKeyAddFINAL(lines 1027 1038) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point L2209(lines 2209 2215) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L451 ceAbstractionStarter]: At program point getClientKeyringSizeENTRY(lines 2197 2220) the Hoare annotation is: true [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point L2205(lines 2205 2216) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point getClientKeyringSizeEXIT(lines 2197 2220) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point L2201(lines 2201 2217) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point getClientKeyringSizeFINAL(lines 2197 2220) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point L529(lines 529 533) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point L529-2(lines 522 537) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point L526(lines 526 534) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point setEmailToEXIT(lines 522 537) no Hoare annotation was computed. [2018-11-28 12:34:58,388 INFO L444 ceAbstractionStarter]: At program point setEmailToENTRY(lines 522 537) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (< ~rjh~0 2) (not (= |old(~__ste_email_to0~0)| ~__ste_Client_Keyring0_User0~0)) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) (< ~chuck~0 3)) [2018-11-28 12:34:58,388 INFO L448 ceAbstractionStarter]: For program point is_queue_emptyEXIT(lines 333 341) no Hoare annotation was computed. [2018-11-28 12:34:58,389 INFO L451 ceAbstractionStarter]: At program point is_queue_emptyENTRY(lines 333 341) the Hoare annotation is: true [2018-11-28 12:34:58,389 INFO L448 ceAbstractionStarter]: For program point is_queue_emptyFINAL(lines 333 341) no Hoare annotation was computed. [2018-11-28 12:34:58,389 INFO L444 ceAbstractionStarter]: At program point L977(line 977) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,389 INFO L451 ceAbstractionStarter]: At program point L978-1(line 978) the Hoare annotation is: true [2018-11-28 12:34:58,389 INFO L448 ceAbstractionStarter]: For program point L977-1(line 977) no Hoare annotation was computed. [2018-11-28 12:34:58,389 INFO L451 ceAbstractionStarter]: At program point L984(line 984) the Hoare annotation is: true [2018-11-28 12:34:58,389 INFO L448 ceAbstractionStarter]: For program point L984-1(line 984) no Hoare annotation was computed. [2018-11-28 12:34:58,389 INFO L448 ceAbstractionStarter]: For program point bobKeyAddEXIT(lines 969 990) no Hoare annotation was computed. [2018-11-28 12:34:58,389 INFO L451 ceAbstractionStarter]: At program point L981(line 981) the Hoare annotation is: true [2018-11-28 12:34:58,389 INFO L448 ceAbstractionStarter]: For program point L981-1(line 981) no Hoare annotation was computed. [2018-11-28 12:34:58,389 INFO L444 ceAbstractionStarter]: At program point bobKeyAddENTRY(lines 969 990) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,389 INFO L448 ceAbstractionStarter]: For program point L979(line 979) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point bobKeyAddFINAL(lines 969 990) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L444 ceAbstractionStarter]: At program point L978(line 978) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2401(lines 2401 2412) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point getClientKeyringPublicKeyEXIT(lines 2382 2435) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2391(lines 2391 2397) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2387(lines 2387 2398) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2414(lines 2414 2430) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2400(lines 2400 2431) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point getClientKeyringPublicKeyFINAL(lines 2382 2435) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L451 ceAbstractionStarter]: At program point getClientKeyringPublicKeyENTRY(lines 2382 2435) the Hoare annotation is: true [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2386(lines 2386 2432) no Hoare annotation was computed. [2018-11-28 12:34:58,390 INFO L448 ceAbstractionStarter]: For program point L2419(lines 2419 2425) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point L2415(lines 2415 2426) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point L2405(lines 2405 2411) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point generateKeyPairFINAL(lines 385 394) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L451 ceAbstractionStarter]: At program point generateKeyPairENTRY(lines 385 394) the Hoare annotation is: true [2018-11-28 12:34:58,391 INFO L451 ceAbstractionStarter]: At program point L390(line 390) the Hoare annotation is: true [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point generateKeyPairEXIT(lines 385 394) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L451 ceAbstractionStarter]: At program point setup_chuck__wrappee__BaseENTRY(lines 870 879) the Hoare annotation is: true [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point setup_chuck__wrappee__BaseFINAL(lines 870 879) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L444 ceAbstractionStarter]: At program point L875(line 875) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (<= |setup_chuck__wrappee__Base_#in~chuck___0| setup_chuck__wrappee__Base_~chuck___0) (not (= ~queue_empty~0 1)) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (< ~rjh~0 2) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0)) (< ~chuck~0 3)) [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point setup_chuck__wrappee__BaseEXIT(lines 870 879) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L448 ceAbstractionStarter]: For program point ULTIMATE.initFINAL(line -1) no Hoare annotation was computed. [2018-11-28 12:34:58,391 INFO L451 ceAbstractionStarter]: At program point ULTIMATE.initENTRY(line -1) the Hoare annotation is: true [2018-11-28 12:34:58,392 INFO L448 ceAbstractionStarter]: For program point ULTIMATE.initEXIT(line -1) no Hoare annotation was computed. [2018-11-28 12:34:58,392 INFO L448 ceAbstractionStarter]: For program point __utac_acc__EncryptForward_spec__1FINAL(lines 55 67) no Hoare annotation was computed. [2018-11-28 12:34:58,392 INFO L444 ceAbstractionStarter]: At program point L61(line 61) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,392 INFO L448 ceAbstractionStarter]: For program point __utac_acc__EncryptForward_spec__1EXIT(lines 55 67) no Hoare annotation was computed. [2018-11-28 12:34:58,392 INFO L448 ceAbstractionStarter]: For program point L61-1(line 61) no Hoare annotation was computed. [2018-11-28 12:34:58,392 INFO L444 ceAbstractionStarter]: At program point __utac_acc__EncryptForward_spec__1ENTRY(lines 55 67) the Hoare annotation is: (or (not (= |old(~in_encrypted~0)| 0)) (not (= ~queue_empty~0 1)) (= 0 ~in_encrypted~0) (< ~rjh~0 2) (< ~chuck~0 3)) [2018-11-28 12:34:58,392 INFO L448 ceAbstractionStarter]: For program point chuckKeyAddRjhFINAL(lines 1039 1050) no Hoare annotation was computed. [2018-11-28 12:34:58,392 INFO L444 ceAbstractionStarter]: At program point chuckKeyAddRjhENTRY(lines 1039 1050) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,392 INFO L444 ceAbstractionStarter]: At program point L1045(line 1045) the Hoare annotation is: (let ((.cse0 (not (= 0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse1 (not (= ~in_encrypted~0 0))) (.cse2 (not (= ~queue_empty~0 1))) (.cse3 (< ~rjh~0 2)) (.cse4 (not (= ~__ste_email_to0~0 |old(~__ste_Client_Keyring0_User0~0)|))) (.cse5 (< ~chuck~0 3))) (and (or .cse0 .cse1 .cse2 .cse3 .cse4 (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) .cse5) (or .cse0 .cse1 (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) .cse2 (not (= |old(~__ste_Client_Keyring0_User0~0)| |old(~__ste_Client_Keyring0_User1~0)|)) .cse3 .cse4 .cse5))) [2018-11-28 12:34:58,392 INFO L448 ceAbstractionStarter]: For program point L1044(line 1044) no Hoare annotation was computed. [2018-11-28 12:34:58,392 INFO L451 ceAbstractionStarter]: At program point L1045-1(line 1045) the Hoare annotation is: true [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point chuckKeyAddRjhEXIT(lines 1039 1050) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L444 ceAbstractionStarter]: At program point L86(line 86) the Hoare annotation is: (or (not (= ~in_encrypted~0 0)) (< ~rjh~0 2)) [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point L82(lines 82 88) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L444 ceAbstractionStarter]: At program point L80(line 80) the Hoare annotation is: (or (not (= ~in_encrypted~0 0)) (< ~rjh~0 2)) [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point L80-1(line 80) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point L78(lines 78 91) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point L78-1(lines 68 94) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point __utac_acc__EncryptForward_spec__2EXIT(lines 68 94) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L451 ceAbstractionStarter]: At program point __utac_acc__EncryptForward_spec__2ENTRY(lines 68 94) the Hoare annotation is: true [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point setupEXIT(lines 925 947) no Hoare annotation was computed. [2018-11-28 12:34:58,393 INFO L451 ceAbstractionStarter]: At program point setupENTRY(lines 925 947) the Hoare annotation is: true [2018-11-28 12:34:58,393 INFO L444 ceAbstractionStarter]: At program point L941(line 941) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (and (<= 3 ~chuck~0) (<= 2 ~rjh~0)) (not (= ~queue_empty~0 1)) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0))) [2018-11-28 12:34:58,393 INFO L448 ceAbstractionStarter]: For program point L941-1(line 941) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point setupFINAL(lines 925 947) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L444 ceAbstractionStarter]: At program point L937(line 937) the Hoare annotation is: (or (not (= 0 ~__ste_Client_Keyring0_User0~0)) (not (= ~in_encrypted~0 0)) (not (= ~queue_empty~0 1)) (not (= ~__ste_Client_Keyring0_User0~0 ~__ste_Client_Keyring0_User1~0)) (not (= ~__ste_email_to0~0 ~__ste_Client_Keyring0_User0~0)) (<= 2 ~rjh~0)) [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point L937-1(line 937) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L451 ceAbstractionStarter]: At program point L933(line 933) the Hoare annotation is: true [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point L933-1(line 933) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L444 ceAbstractionStarter]: At program point L-1(line -1) the Hoare annotation is: (and (= ~__ste_Client_Keyring0_User1~0 ~__ste_Client_Keyring0_User0~0) (= 0 ~in_encrypted~0) (= 0 ~__ste_Client_Keyring0_User0~0) (= ~__ste_Client_Keyring0_User0~0 ~__ste_email_to0~0) (= ~queue_empty~0 1)) [2018-11-28 12:34:58,394 INFO L451 ceAbstractionStarter]: At program point ULTIMATE.startENTRY(line -1) the Hoare annotation is: true [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point ULTIMATE.startFINAL(line -1) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point L2231(lines 2231 2235) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point L2228(lines 2228 2236) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point L2231-2(lines 2221 2240) no Hoare annotation was computed. [2018-11-28 12:34:58,394 INFO L448 ceAbstractionStarter]: For program point setClientKeyringSizeEXIT(lines 2221 2240) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L448 ceAbstractionStarter]: For program point L2225(lines 2225 2237) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L451 ceAbstractionStarter]: At program point setClientKeyringSizeENTRY(lines 2221 2240) the Hoare annotation is: true [2018-11-28 12:34:58,395 INFO L448 ceAbstractionStarter]: For program point L2619(lines 2619 2623) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L448 ceAbstractionStarter]: For program point L2616(lines 2616 2624) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L448 ceAbstractionStarter]: For program point L2619-2(lines 2609 2628) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L448 ceAbstractionStarter]: For program point L2613(lines 2613 2625) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L448 ceAbstractionStarter]: For program point setClientIdEXIT(lines 2609 2628) no Hoare annotation was computed. [2018-11-28 12:34:58,395 INFO L451 ceAbstractionStarter]: At program point setClientIdENTRY(lines 2609 2628) the Hoare annotation is: true [2018-11-28 12:34:58,412 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 28.11 12:34:58 BoogieIcfgContainer [2018-11-28 12:34:58,412 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2018-11-28 12:34:58,412 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2018-11-28 12:34:58,412 INFO L271 PluginConnector]: Initializing Witness Printer... [2018-11-28 12:34:58,412 INFO L276 PluginConnector]: Witness Printer initialized [2018-11-28 12:34:58,413 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 12:34:39" (3/4) ... [2018-11-28 12:34:58,416 INFO L144 WitnessPrinter]: Generating witness for correct program [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure bobKeyChange [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure mail [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure valid_product [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure get_queued_client [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure isKeyPairValid [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure main [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure rjhKeyChange [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup_rjh [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getClientPrivateKey [2018-11-28 12:34:58,423 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure rjhKeyAdd [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure bobToRjh [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup_bob [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setEmailEncryptionKey [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure select_features [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup_bob__wrappee__Base [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getEmailEncryptionKey [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure outgoing__wrappee__Keys [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure incoming [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure createEmail [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure rjhDeletePrivateKey [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure test [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getEmailTo [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure get_queued_email [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getClientKeyringUser [2018-11-28 12:34:58,424 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setClientKeyringUser [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure incoming__wrappee__Encrypt [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setEmailFrom [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure __automaton_fail [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setClientKeyringPublicKey [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup_rjh__wrappee__Base [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure outgoing [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure select_helpers [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getClientId [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure deliver [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure createClientKeyringEntry [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup_chuck [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure findPublicKey [2018-11-28 12:34:58,425 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure sendEmail [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure isEncrypted [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setEmailIsEncrypted [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setClientPrivateKey [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure chuckKeyAdd [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getClientKeyringSize [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setEmailTo [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure is_queue_empty [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure bobKeyAdd [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure getClientKeyringPublicKey [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure generateKeyPair [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup_chuck__wrappee__Base [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure ULTIMATE.init [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure __utac_acc__EncryptForward_spec__1 [2018-11-28 12:34:58,426 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure chuckKeyAddRjh [2018-11-28 12:34:58,427 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure __utac_acc__EncryptForward_spec__2 [2018-11-28 12:34:58,427 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setup [2018-11-28 12:34:58,427 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setClientKeyringSize [2018-11-28 12:34:58,427 INFO L354 RCFGBacktranslator]: Ignoring RootEdge to procedure setClientId [2018-11-28 12:34:58,445 INFO L905 BoogieBacktranslator]: Reduced CFG by removing 86 nodes and edges [2018-11-28 12:34:58,446 INFO L905 BoogieBacktranslator]: Reduced CFG by removing 42 nodes and edges [2018-11-28 12:34:58,447 INFO L905 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2018-11-28 12:34:58,448 INFO L905 BoogieBacktranslator]: Reduced CFG by removing 3 nodes and edges [2018-11-28 12:34:58,448 INFO L905 BoogieBacktranslator]: Reduced CFG by removing 2 nodes and edges [2018-11-28 12:34:58,481 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,481 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,481 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,481 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,481 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,483 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,483 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,483 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,483 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,483 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,484 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,484 WARN L221 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 [2018-11-28 12:34:58,561 INFO L145 WitnessManager]: Wrote witness to /tmp/vcloud-vcloud-master/worker/working_dir_21c54046-e82c-4ae5-a54a-0a8cbd30373f/bin-2019/uautomizer/witness.graphml [2018-11-28 12:34:58,561 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2018-11-28 12:34:58,562 INFO L168 Benchmark]: Toolchain (without parser) took 20654.54 ms. Allocated memory was 1.0 GB in the beginning and 2.0 GB in the end (delta: 941.1 MB). Free memory was 956.0 MB in the beginning and 1.6 GB in the end (delta: -678.8 MB). Peak memory consumption was 262.3 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,563 INFO L168 Benchmark]: CDTParser took 0.15 ms. Allocated memory is still 1.0 GB. Free memory is still 985.0 MB. There was no memory consumed. Max. memory is 11.5 GB. [2018-11-28 12:34:58,563 INFO L168 Benchmark]: CACSL2BoogieTranslator took 534.40 ms. Allocated memory was 1.0 GB in the beginning and 1.2 GB in the end (delta: 160.4 MB). Free memory was 956.0 MB in the beginning and 1.1 GB in the end (delta: -154.4 MB). Peak memory consumption was 45.4 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,563 INFO L168 Benchmark]: Boogie Procedure Inliner took 39.23 ms. Allocated memory is still 1.2 GB. Free memory was 1.1 GB in the beginning and 1.1 GB in the end (delta: 3.2 MB). Peak memory consumption was 3.2 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,563 INFO L168 Benchmark]: Boogie Preprocessor took 49.32 ms. Allocated memory is still 1.2 GB. Free memory was 1.1 GB in the beginning and 1.1 GB in the end (delta: 3.2 MB). Peak memory consumption was 3.2 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,564 INFO L168 Benchmark]: RCFGBuilder took 902.24 ms. Allocated memory is still 1.2 GB. Free memory was 1.1 GB in the beginning and 977.7 MB in the end (delta: 126.4 MB). Peak memory consumption was 126.4 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,564 INFO L168 Benchmark]: TraceAbstraction took 18976.94 ms. Allocated memory was 1.2 GB in the beginning and 2.0 GB in the end (delta: 780.7 MB). Free memory was 977.7 MB in the beginning and 1.7 GB in the end (delta: -678.6 MB). Peak memory consumption was 795.7 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,564 INFO L168 Benchmark]: Witness Printer took 148.97 ms. Allocated memory is still 2.0 GB. Free memory was 1.7 GB in the beginning and 1.6 GB in the end (delta: 21.4 MB). Peak memory consumption was 21.4 MB. Max. memory is 11.5 GB. [2018-11-28 12:34:58,566 INFO L336 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.15 ms. Allocated memory is still 1.0 GB. Free memory is still 985.0 MB. There was no memory consumed. Max. memory is 11.5 GB. * CACSL2BoogieTranslator took 534.40 ms. Allocated memory was 1.0 GB in the beginning and 1.2 GB in the end (delta: 160.4 MB). Free memory was 956.0 MB in the beginning and 1.1 GB in the end (delta: -154.4 MB). Peak memory consumption was 45.4 MB. Max. memory is 11.5 GB. * Boogie Procedure Inliner took 39.23 ms. Allocated memory is still 1.2 GB. Free memory was 1.1 GB in the beginning and 1.1 GB in the end (delta: 3.2 MB). Peak memory consumption was 3.2 MB. Max. memory is 11.5 GB. * Boogie Preprocessor took 49.32 ms. Allocated memory is still 1.2 GB. Free memory was 1.1 GB in the beginning and 1.1 GB in the end (delta: 3.2 MB). Peak memory consumption was 3.2 MB. Max. memory is 11.5 GB. * RCFGBuilder took 902.24 ms. Allocated memory is still 1.2 GB. Free memory was 1.1 GB in the beginning and 977.7 MB in the end (delta: 126.4 MB). Peak memory consumption was 126.4 MB. Max. memory is 11.5 GB. * TraceAbstraction took 18976.94 ms. Allocated memory was 1.2 GB in the beginning and 2.0 GB in the end (delta: 780.7 MB). Free memory was 977.7 MB in the beginning and 1.7 GB in the end (delta: -678.6 MB). Peak memory consumption was 795.7 MB. Max. memory is 11.5 GB. * Witness Printer took 148.97 ms. Allocated memory is still 2.0 GB. Free memory was 1.7 GB in the beginning and 1.6 GB in the end (delta: 21.4 MB). Peak memory consumption was 21.4 MB. Max. memory is 11.5 GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - PositiveResult [Line: 1452]: call of __VERIFIER_error() unreachable For all program executions holds that call of __VERIFIER_error() unreachable at this location - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 2716]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2780]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2668]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2677]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2744]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2691]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2730]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2794]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2755]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2702]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2769]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - InvariantResult [Line: 2669]: Loop Invariant Derived loop invariant: ((((((!(0 == \old(__ste_Client_Keyring0_User0)) || !(\old(in_encrypted) == 0)) || !(queue_empty == 1)) || !(\old(__ste_Client_Keyring0_User0) == \old(__ste_Client_Keyring0_User1))) || 0 == in_encrypted) || rjh < 2) || !(\old(__ste_email_to0) == \old(__ste_Client_Keyring0_User0))) || chuck < 3 - StatisticsResult: Ultimate Automizer benchmark data CFG has 57 procedures, 394 locations, 1 error locations. SAFE Result, 18.9s OverallTime, 10 OverallIterations, 3 TraceHistogramMax, 11.7s AutomataDifference, 0.0s DeadEndRemovalTime, 2.8s HoareAnnotationTime, HoareTripleCheckerStatistics: 6548 SDtfs, 7193 SDslu, 52782 SDs, 0 SdLazy, 21532 SolverSat, 2586 SolverUnsat, 0 SolverUnknown, 0 SolverNotchecked, 7.4s Time, PredicateUnifierStatistics: 0 DeclaredPredicates, 1342 GetRequests, 1055 SyntacticMatches, 3 SemanticMatches, 284 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6467 ImplicationChecksByTransitivity, 3.0s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=2706occurred in iteration=9, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s AbstIntTime, 0 AbstIntIterations, 0 AbstIntStrong, NaN AbsIntWeakeningRatio, NaN AbsIntAvgWeakeningVarsNumRemoved, NaN AbsIntAvgWeakenedConjuncts, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 10 MinimizatonAttempts, 1196 StatesRemovedByMinimization, 6 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 141 LocationsWithAnnotation, 3517 PreInvPairs, 4007 NumberOfFragments, 2961 HoareAnnotationTreeSize, 3517 FomulaSimplifications, 5973 FormulaSimplificationTreeSizeReduction, 0.4s HoareSimplificationTime, 141 FomulaSimplificationsInter, 20408 FormulaSimplificationTreeSizeReductionInter, 2.3s HoareSimplificationTimeInter, RefinementEngineStatistics: TraceCheckStatistics: 0.3s SsaConstructionTime, 1.0s SatisfiabilityAnalysisTime, 1.7s InterpolantComputationTime, 3120 NumberOfCodeBlocks, 3120 NumberOfCodeBlocksAsserted, 14 NumberOfCheckSat, 3106 ConstructedInterpolants, 0 QuantifiedInterpolants, 937104 SizeOfPredicates, 15 NumberOfNonLiveVariables, 10512 ConjunctsInSsa, 30 ConjunctsInUnsatCore, 14 InterpolantComputations, 10 PerfectInterpolantSequences, 888/909 InterpolantCoveringCapability, InvariantSynthesisStatistics: No data available, InterpolantConsolidationStatistics: No data available, ReuseStatistics: No data available RESULT: Ultimate proved your program to be correct! Received shutdown request...