./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/email_spec1_product14.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 803cd42f Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/email_spec1_product14.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 7bf93f828cd20929ce9c5f311b0e320b3840eed4f400e7f2f8e12c9cdbceb4d2 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-803cd42-m [2024-11-22 01:52:23,785 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-22 01:52:23,845 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-22 01:52:23,848 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-22 01:52:23,850 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-22 01:52:23,866 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-22 01:52:23,867 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-22 01:52:23,867 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-22 01:52:23,867 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-22 01:52:23,868 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-22 01:52:23,868 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-22 01:52:23,869 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-22 01:52:23,869 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-22 01:52:23,869 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-22 01:52:23,870 INFO L153 SettingsManager]: * Use SBE=true [2024-11-22 01:52:23,870 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-22 01:52:23,870 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-22 01:52:23,870 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-22 01:52:23,870 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-22 01:52:23,871 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-22 01:52:23,871 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-22 01:52:23,873 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-22 01:52:23,874 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-22 01:52:23,874 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-22 01:52:23,874 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-22 01:52:23,874 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-22 01:52:23,874 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-22 01:52:23,874 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-22 01:52:23,875 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-22 01:52:23,875 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-22 01:52:23,875 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-22 01:52:23,875 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-22 01:52:23,875 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-22 01:52:23,876 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-22 01:52:23,876 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-22 01:52:23,876 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-22 01:52:23,876 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-22 01:52:23,876 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-22 01:52:23,877 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-22 01:52:23,877 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-22 01:52:23,877 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-22 01:52:23,878 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-22 01:52:23,878 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 7bf93f828cd20929ce9c5f311b0e320b3840eed4f400e7f2f8e12c9cdbceb4d2 [2024-11-22 01:52:24,097 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-22 01:52:24,122 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-22 01:52:24,124 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-22 01:52:24,125 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-22 01:52:24,125 INFO L274 PluginConnector]: CDTParser initialized [2024-11-22 01:52:24,126 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/email_spec1_product14.cil.c [2024-11-22 01:52:25,471 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-22 01:52:25,708 INFO L384 CDTParser]: Found 1 translation units. [2024-11-22 01:52:25,712 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec1_product14.cil.c [2024-11-22 01:52:25,743 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/defbe90f2/e3dd40d372a947f7b80a3203170e4ba2/FLAGff4af01db [2024-11-22 01:52:26,051 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/defbe90f2/e3dd40d372a947f7b80a3203170e4ba2 [2024-11-22 01:52:26,053 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-22 01:52:26,054 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-22 01:52:26,055 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-22 01:52:26,055 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-22 01:52:26,062 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-22 01:52:26,063 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,064 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@7012beb2 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26, skipping insertion in model container [2024-11-22 01:52:26,064 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,126 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-22 01:52:26,584 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec1_product14.cil.c[62671,62684] [2024-11-22 01:52:26,587 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-22 01:52:26,600 INFO L200 MainTranslator]: Completed pre-run [2024-11-22 01:52:26,608 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [48] [2024-11-22 01:52:26,609 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"AddressBookEncrypt_spec.i","") [1128] [2024-11-22 01:52:26,610 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [1170] [2024-11-22 01:52:26,610 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [1456] [2024-11-22 01:52:26,610 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [1562] [2024-11-22 01:52:26,610 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [1579] [2024-11-22 01:52:26,610 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [1617] [2024-11-22 01:52:26,611 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [1983] [2024-11-22 01:52:26,611 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [2208] [2024-11-22 01:52:26,611 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2486] [2024-11-22 01:52:26,611 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [2889] [2024-11-22 01:52:26,692 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/email_spec1_product14.cil.c[62671,62684] [2024-11-22 01:52:26,693 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-22 01:52:26,727 INFO L204 MainTranslator]: Completed translation [2024-11-22 01:52:26,727 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26 WrapperNode [2024-11-22 01:52:26,728 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-22 01:52:26,729 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-22 01:52:26,729 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-22 01:52:26,729 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-22 01:52:26,734 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,759 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,797 INFO L138 Inliner]: procedures = 125, calls = 189, calls flagged for inlining = 50, calls inlined = 42, statements flattened = 890 [2024-11-22 01:52:26,798 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-22 01:52:26,798 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-22 01:52:26,798 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-22 01:52:26,798 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-22 01:52:26,812 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,813 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,816 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,844 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2024-11-22 01:52:26,845 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,845 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,859 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,874 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,880 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,888 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,900 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-22 01:52:26,900 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-22 01:52:26,900 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-22 01:52:26,900 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-22 01:52:26,901 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (1/1) ... [2024-11-22 01:52:26,906 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-22 01:52:26,914 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:26,932 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-22 01:52:26,936 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-22 01:52:26,974 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2024-11-22 01:52:26,974 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2024-11-22 01:52:26,975 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2024-11-22 01:52:26,975 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2024-11-22 01:52:26,975 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2024-11-22 01:52:26,975 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2024-11-22 01:52:26,975 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2024-11-22 01:52:26,975 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2024-11-22 01:52:26,975 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2024-11-22 01:52:26,975 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2024-11-22 01:52:26,976 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2024-11-22 01:52:26,976 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2024-11-22 01:52:26,976 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2024-11-22 01:52:26,976 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2024-11-22 01:52:26,977 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2024-11-22 01:52:26,977 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2024-11-22 01:52:26,977 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2024-11-22 01:52:26,977 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2024-11-22 01:52:26,977 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2024-11-22 01:52:26,977 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2024-11-22 01:52:26,978 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-22 01:52:26,978 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-11-22 01:52:26,979 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-11-22 01:52:26,979 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-11-22 01:52:26,979 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2024-11-22 01:52:26,979 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2024-11-22 01:52:26,979 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2024-11-22 01:52:26,979 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2024-11-22 01:52:26,979 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-22 01:52:26,980 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-22 01:52:27,150 INFO L238 CfgBuilder]: Building ICFG [2024-11-22 01:52:27,152 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-22 01:52:27,879 INFO L? ?]: Removed 440 outVars from TransFormulas that were not future-live. [2024-11-22 01:52:27,880 INFO L287 CfgBuilder]: Performing block encoding [2024-11-22 01:52:27,901 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-22 01:52:27,901 INFO L316 CfgBuilder]: Removed 1 assume(true) statements. [2024-11-22 01:52:27,902 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 01:52:27 BoogieIcfgContainer [2024-11-22 01:52:27,902 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-22 01:52:27,903 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-22 01:52:27,903 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-22 01:52:27,906 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-22 01:52:27,906 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 22.11 01:52:26" (1/3) ... [2024-11-22 01:52:27,907 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6b6bb40 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.11 01:52:27, skipping insertion in model container [2024-11-22 01:52:27,907 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 01:52:26" (2/3) ... [2024-11-22 01:52:27,908 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6b6bb40 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.11 01:52:27, skipping insertion in model container [2024-11-22 01:52:27,908 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 01:52:27" (3/3) ... [2024-11-22 01:52:27,909 INFO L112 eAbstractionObserver]: Analyzing ICFG email_spec1_product14.cil.c [2024-11-22 01:52:27,922 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-22 01:52:27,922 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-22 01:52:27,984 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-22 01:52:27,989 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@ca7effb, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-22 01:52:27,989 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-22 01:52:27,995 INFO L276 IsEmpty]: Start isEmpty. Operand has 342 states, 267 states have (on average 1.5880149812734083) internal successors, (424), 272 states have internal predecessors, (424), 52 states have call successors, (52), 21 states have call predecessors, (52), 21 states have return successors, (52), 51 states have call predecessors, (52), 52 states have call successors, (52) [2024-11-22 01:52:28,008 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2024-11-22 01:52:28,008 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:28,009 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:28,009 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:28,013 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:28,013 INFO L85 PathProgramCache]: Analyzing trace with hash -156634383, now seen corresponding path program 1 times [2024-11-22 01:52:28,019 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:28,020 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [566783048] [2024-11-22 01:52:28,020 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:28,020 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:28,171 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:28,561 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-22 01:52:28,561 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:28,562 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [566783048] [2024-11-22 01:52:28,563 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [566783048] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 01:52:28,564 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1818909854] [2024-11-22 01:52:28,564 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:28,564 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:28,565 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:28,568 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 01:52:28,569 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-22 01:52:28,814 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:28,819 INFO L255 TraceCheckSpWp]: Trace formula consists of 947 conjuncts, 1 conjuncts are in the unsatisfiable core [2024-11-22 01:52:28,827 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 01:52:28,851 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-22 01:52:28,851 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 01:52:28,851 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1818909854] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:28,851 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 01:52:28,852 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [5] total 5 [2024-11-22 01:52:28,853 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [307308166] [2024-11-22 01:52:28,854 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:28,857 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-22 01:52:28,858 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:28,881 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-22 01:52:28,881 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:28,885 INFO L87 Difference]: Start difference. First operand has 342 states, 267 states have (on average 1.5880149812734083) internal successors, (424), 272 states have internal predecessors, (424), 52 states have call successors, (52), 21 states have call predecessors, (52), 21 states have return successors, (52), 51 states have call predecessors, (52), 52 states have call successors, (52) Second operand has 2 states, 2 states have (on average 28.0) internal successors, (56), 2 states have internal predecessors, (56), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:28,924 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:28,924 INFO L93 Difference]: Finished difference Result 496 states and 754 transitions. [2024-11-22 01:52:28,928 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-22 01:52:28,929 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 28.0) internal successors, (56), 2 states have internal predecessors, (56), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 98 [2024-11-22 01:52:28,930 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:28,945 INFO L225 Difference]: With dead ends: 496 [2024-11-22 01:52:28,945 INFO L226 Difference]: Without dead ends: 335 [2024-11-22 01:52:28,949 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 102 GetRequests, 99 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:28,953 INFO L432 NwaCegarLoop]: 524 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 524 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:28,954 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 524 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:28,969 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 335 states. [2024-11-22 01:52:29,006 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 335 to 335. [2024-11-22 01:52:29,009 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 335 states, 261 states have (on average 1.582375478927203) internal successors, (413), 265 states have internal predecessors, (413), 52 states have call successors, (52), 21 states have call predecessors, (52), 21 states have return successors, (51), 50 states have call predecessors, (51), 51 states have call successors, (51) [2024-11-22 01:52:29,012 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 335 states to 335 states and 516 transitions. [2024-11-22 01:52:29,017 INFO L78 Accepts]: Start accepts. Automaton has 335 states and 516 transitions. Word has length 98 [2024-11-22 01:52:29,019 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:29,019 INFO L471 AbstractCegarLoop]: Abstraction has 335 states and 516 transitions. [2024-11-22 01:52:29,019 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 28.0) internal successors, (56), 2 states have internal predecessors, (56), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:29,019 INFO L276 IsEmpty]: Start isEmpty. Operand 335 states and 516 transitions. [2024-11-22 01:52:29,025 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 100 [2024-11-22 01:52:29,026 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:29,026 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:29,036 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-22 01:52:29,227 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-11-22 01:52:29,227 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:29,228 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:29,228 INFO L85 PathProgramCache]: Analyzing trace with hash 233231985, now seen corresponding path program 1 times [2024-11-22 01:52:29,228 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:29,228 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1454197148] [2024-11-22 01:52:29,229 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:29,229 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:29,268 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:29,419 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-22 01:52:29,419 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:29,419 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1454197148] [2024-11-22 01:52:29,419 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1454197148] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 01:52:29,419 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [501851464] [2024-11-22 01:52:29,419 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:29,419 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:29,420 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:29,426 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 01:52:29,428 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-22 01:52:29,655 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:29,658 INFO L255 TraceCheckSpWp]: Trace formula consists of 948 conjuncts, 2 conjuncts are in the unsatisfiable core [2024-11-22 01:52:29,665 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 01:52:29,688 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-22 01:52:29,688 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 01:52:29,689 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [501851464] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:29,689 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 01:52:29,689 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-22 01:52:29,689 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [859432153] [2024-11-22 01:52:29,689 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:29,690 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:29,690 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:29,690 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:29,690 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 01:52:29,691 INFO L87 Difference]: Start difference. First operand 335 states and 516 transitions. Second operand has 3 states, 3 states have (on average 19.0) internal successors, (57), 3 states have internal predecessors, (57), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:29,738 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:29,738 INFO L93 Difference]: Finished difference Result 486 states and 732 transitions. [2024-11-22 01:52:29,738 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:29,738 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 19.0) internal successors, (57), 3 states have internal predecessors, (57), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 99 [2024-11-22 01:52:29,739 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:29,741 INFO L225 Difference]: With dead ends: 486 [2024-11-22 01:52:29,741 INFO L226 Difference]: Without dead ends: 338 [2024-11-22 01:52:29,743 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 103 GetRequests, 99 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 01:52:29,743 INFO L432 NwaCegarLoop]: 514 mSDtfsCounter, 1 mSDsluCounter, 512 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 1026 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:29,744 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 1026 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:29,754 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 338 states. [2024-11-22 01:52:29,774 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 338 to 337. [2024-11-22 01:52:29,775 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 337 states, 263 states have (on average 1.5779467680608366) internal successors, (415), 267 states have internal predecessors, (415), 52 states have call successors, (52), 21 states have call predecessors, (52), 21 states have return successors, (51), 50 states have call predecessors, (51), 51 states have call successors, (51) [2024-11-22 01:52:29,779 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 337 states to 337 states and 518 transitions. [2024-11-22 01:52:29,780 INFO L78 Accepts]: Start accepts. Automaton has 337 states and 518 transitions. Word has length 99 [2024-11-22 01:52:29,780 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:29,780 INFO L471 AbstractCegarLoop]: Abstraction has 337 states and 518 transitions. [2024-11-22 01:52:29,780 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 19.0) internal successors, (57), 3 states have internal predecessors, (57), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:29,780 INFO L276 IsEmpty]: Start isEmpty. Operand 337 states and 518 transitions. [2024-11-22 01:52:29,783 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 106 [2024-11-22 01:52:29,783 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:29,783 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:29,793 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-22 01:52:29,984 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable1 [2024-11-22 01:52:29,984 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:29,985 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:29,985 INFO L85 PathProgramCache]: Analyzing trace with hash 932096872, now seen corresponding path program 1 times [2024-11-22 01:52:29,985 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:29,985 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2090478682] [2024-11-22 01:52:29,986 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:29,986 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:30,021 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:30,143 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-22 01:52:30,144 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:30,144 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2090478682] [2024-11-22 01:52:30,144 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2090478682] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 01:52:30,144 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [849309973] [2024-11-22 01:52:30,144 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:30,144 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:30,144 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:30,147 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 01:52:30,148 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-22 01:52:30,357 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:30,361 INFO L255 TraceCheckSpWp]: Trace formula consists of 960 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 01:52:30,364 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 01:52:30,384 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-22 01:52:30,384 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 01:52:30,388 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [849309973] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:30,389 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 01:52:30,389 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-22 01:52:30,389 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1988902899] [2024-11-22 01:52:30,389 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:30,389 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:30,389 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:30,390 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:30,390 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 01:52:30,390 INFO L87 Difference]: Start difference. First operand 337 states and 518 transitions. Second operand has 3 states, 3 states have (on average 21.0) internal successors, (63), 3 states have internal predecessors, (63), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:30,417 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:30,418 INFO L93 Difference]: Finished difference Result 717 states and 1120 transitions. [2024-11-22 01:52:30,419 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:30,419 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 21.0) internal successors, (63), 3 states have internal predecessors, (63), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 105 [2024-11-22 01:52:30,419 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:30,423 INFO L225 Difference]: With dead ends: 717 [2024-11-22 01:52:30,423 INFO L226 Difference]: Without dead ends: 407 [2024-11-22 01:52:30,426 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 109 GetRequests, 105 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 01:52:30,427 INFO L432 NwaCegarLoop]: 534 mSDtfsCounter, 126 mSDsluCounter, 470 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1004 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:30,427 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1004 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:30,431 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 407 states. [2024-11-22 01:52:30,459 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 407 to 399. [2024-11-22 01:52:30,460 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 399 states, 311 states have (on average 1.594855305466238) internal successors, (496), 315 states have internal predecessors, (496), 66 states have call successors, (66), 21 states have call predecessors, (66), 21 states have return successors, (65), 64 states have call predecessors, (65), 65 states have call successors, (65) [2024-11-22 01:52:30,462 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 399 states to 399 states and 627 transitions. [2024-11-22 01:52:30,464 INFO L78 Accepts]: Start accepts. Automaton has 399 states and 627 transitions. Word has length 105 [2024-11-22 01:52:30,464 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:30,465 INFO L471 AbstractCegarLoop]: Abstraction has 399 states and 627 transitions. [2024-11-22 01:52:30,465 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 21.0) internal successors, (63), 3 states have internal predecessors, (63), 2 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:30,465 INFO L276 IsEmpty]: Start isEmpty. Operand 399 states and 627 transitions. [2024-11-22 01:52:30,468 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 107 [2024-11-22 01:52:30,469 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:30,469 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:30,477 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-22 01:52:30,669 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:30,670 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:30,670 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:30,670 INFO L85 PathProgramCache]: Analyzing trace with hash -654731446, now seen corresponding path program 1 times [2024-11-22 01:52:30,671 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:30,671 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [977335875] [2024-11-22 01:52:30,671 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:30,671 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:30,692 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:30,808 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-22 01:52:30,808 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:30,808 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [977335875] [2024-11-22 01:52:30,808 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [977335875] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 01:52:30,809 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1655985627] [2024-11-22 01:52:30,809 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:30,809 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:30,809 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:30,812 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 01:52:30,813 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-22 01:52:31,019 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:31,027 INFO L255 TraceCheckSpWp]: Trace formula consists of 965 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-22 01:52:31,031 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 01:52:31,082 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2024-11-22 01:52:31,082 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 01:52:31,082 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1655985627] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:31,082 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 01:52:31,082 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8 [2024-11-22 01:52:31,083 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1823790214] [2024-11-22 01:52:31,083 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:31,083 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 01:52:31,083 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:31,084 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 01:52:31,084 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-22 01:52:31,084 INFO L87 Difference]: Start difference. First operand 399 states and 627 transitions. Second operand has 5 states, 4 states have (on average 18.0) internal successors, (72), 5 states have internal predecessors, (72), 3 states have call successors, (15), 2 states have call predecessors, (15), 3 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:31,135 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:31,136 INFO L93 Difference]: Finished difference Result 789 states and 1244 transitions. [2024-11-22 01:52:31,136 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 01:52:31,137 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 18.0) internal successors, (72), 5 states have internal predecessors, (72), 3 states have call successors, (15), 2 states have call predecessors, (15), 3 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) Word has length 106 [2024-11-22 01:52:31,137 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:31,140 INFO L225 Difference]: With dead ends: 789 [2024-11-22 01:52:31,140 INFO L226 Difference]: Without dead ends: 401 [2024-11-22 01:52:31,143 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 110 GetRequests, 104 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-22 01:52:31,144 INFO L432 NwaCegarLoop]: 508 mSDtfsCounter, 2 mSDsluCounter, 1513 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2021 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:31,144 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2021 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:31,145 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 401 states. [2024-11-22 01:52:31,160 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 401 to 401. [2024-11-22 01:52:31,161 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 401 states, 312 states have (on average 1.5929487179487178) internal successors, (497), 317 states have internal predecessors, (497), 66 states have call successors, (66), 21 states have call predecessors, (66), 22 states have return successors, (67), 64 states have call predecessors, (67), 65 states have call successors, (67) [2024-11-22 01:52:31,177 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 401 states to 401 states and 630 transitions. [2024-11-22 01:52:31,178 INFO L78 Accepts]: Start accepts. Automaton has 401 states and 630 transitions. Word has length 106 [2024-11-22 01:52:31,178 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:31,178 INFO L471 AbstractCegarLoop]: Abstraction has 401 states and 630 transitions. [2024-11-22 01:52:31,178 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 18.0) internal successors, (72), 5 states have internal predecessors, (72), 3 states have call successors, (15), 2 states have call predecessors, (15), 3 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:31,178 INFO L276 IsEmpty]: Start isEmpty. Operand 401 states and 630 transitions. [2024-11-22 01:52:31,185 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 108 [2024-11-22 01:52:31,185 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:31,185 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:31,194 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-22 01:52:31,386 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:31,386 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:31,386 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:31,386 INFO L85 PathProgramCache]: Analyzing trace with hash 59366120, now seen corresponding path program 1 times [2024-11-22 01:52:31,387 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:31,387 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1574506900] [2024-11-22 01:52:31,388 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:31,388 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:31,409 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:31,516 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-22 01:52:31,516 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:31,516 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1574506900] [2024-11-22 01:52:31,516 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1574506900] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 01:52:31,516 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2100257251] [2024-11-22 01:52:31,516 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:31,516 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:31,517 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:31,519 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 01:52:31,520 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-22 01:52:31,725 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:31,729 INFO L255 TraceCheckSpWp]: Trace formula consists of 966 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-22 01:52:31,732 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 01:52:31,766 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2024-11-22 01:52:31,767 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 01:52:31,767 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2100257251] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:31,767 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 01:52:31,767 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11 [2024-11-22 01:52:31,767 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [895146399] [2024-11-22 01:52:31,768 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:31,768 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 01:52:31,768 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:31,768 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 01:52:31,768 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-22 01:52:31,769 INFO L87 Difference]: Start difference. First operand 401 states and 630 transitions. Second operand has 5 states, 5 states have (on average 14.8) internal successors, (74), 5 states have internal predecessors, (74), 3 states have call successors, (15), 2 states have call predecessors, (15), 3 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:31,819 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:31,819 INFO L93 Difference]: Finished difference Result 791 states and 1249 transitions. [2024-11-22 01:52:31,820 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 01:52:31,820 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 14.8) internal successors, (74), 5 states have internal predecessors, (74), 3 states have call successors, (15), 2 states have call predecessors, (15), 3 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) Word has length 107 [2024-11-22 01:52:31,820 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:31,823 INFO L225 Difference]: With dead ends: 791 [2024-11-22 01:52:31,823 INFO L226 Difference]: Without dead ends: 403 [2024-11-22 01:52:31,825 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 114 GetRequests, 105 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-22 01:52:31,825 INFO L432 NwaCegarLoop]: 506 mSDtfsCounter, 2 mSDsluCounter, 1501 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2007 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:31,826 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2007 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:31,829 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 403 states. [2024-11-22 01:52:31,844 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 403 to 403. [2024-11-22 01:52:31,845 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 403 states, 313 states have (on average 1.5910543130990416) internal successors, (498), 319 states have internal predecessors, (498), 66 states have call successors, (66), 21 states have call predecessors, (66), 23 states have return successors, (72), 64 states have call predecessors, (72), 65 states have call successors, (72) [2024-11-22 01:52:31,847 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 403 states to 403 states and 636 transitions. [2024-11-22 01:52:31,847 INFO L78 Accepts]: Start accepts. Automaton has 403 states and 636 transitions. Word has length 107 [2024-11-22 01:52:31,848 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:31,848 INFO L471 AbstractCegarLoop]: Abstraction has 403 states and 636 transitions. [2024-11-22 01:52:31,848 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 14.8) internal successors, (74), 5 states have internal predecessors, (74), 3 states have call successors, (15), 2 states have call predecessors, (15), 3 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:31,848 INFO L276 IsEmpty]: Start isEmpty. Operand 403 states and 636 transitions. [2024-11-22 01:52:31,850 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 109 [2024-11-22 01:52:31,850 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:31,850 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:31,861 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-22 01:52:32,054 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:32,055 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:32,055 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:32,055 INFO L85 PathProgramCache]: Analyzing trace with hash -306147499, now seen corresponding path program 1 times [2024-11-22 01:52:32,056 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:32,056 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1914399817] [2024-11-22 01:52:32,056 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:32,056 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:32,084 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:32,169 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-22 01:52:32,169 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:32,169 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1914399817] [2024-11-22 01:52:32,169 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1914399817] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:32,169 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:32,169 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 01:52:32,170 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [416475157] [2024-11-22 01:52:32,170 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:32,170 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 01:52:32,170 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:32,171 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 01:52:32,171 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,171 INFO L87 Difference]: Start difference. First operand 403 states and 636 transitions. Second operand has 5 states, 4 states have (on average 17.5) internal successors, (70), 5 states have internal predecessors, (70), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,200 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:32,201 INFO L93 Difference]: Finished difference Result 783 states and 1240 transitions. [2024-11-22 01:52:32,201 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 01:52:32,201 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 17.5) internal successors, (70), 5 states have internal predecessors, (70), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) Word has length 108 [2024-11-22 01:52:32,201 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:32,204 INFO L225 Difference]: With dead ends: 783 [2024-11-22 01:52:32,204 INFO L226 Difference]: Without dead ends: 403 [2024-11-22 01:52:32,205 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,206 INFO L432 NwaCegarLoop]: 509 mSDtfsCounter, 2 mSDsluCounter, 1516 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2025 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:32,206 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2025 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:32,206 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 403 states. [2024-11-22 01:52:32,216 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 403 to 403. [2024-11-22 01:52:32,217 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 403 states, 313 states have (on average 1.5910543130990416) internal successors, (498), 319 states have internal predecessors, (498), 66 states have call successors, (66), 21 states have call predecessors, (66), 23 states have return successors, (71), 64 states have call predecessors, (71), 65 states have call successors, (71) [2024-11-22 01:52:32,219 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 403 states to 403 states and 635 transitions. [2024-11-22 01:52:32,219 INFO L78 Accepts]: Start accepts. Automaton has 403 states and 635 transitions. Word has length 108 [2024-11-22 01:52:32,219 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:32,220 INFO L471 AbstractCegarLoop]: Abstraction has 403 states and 635 transitions. [2024-11-22 01:52:32,220 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 17.5) internal successors, (70), 5 states have internal predecessors, (70), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,220 INFO L276 IsEmpty]: Start isEmpty. Operand 403 states and 635 transitions. [2024-11-22 01:52:32,221 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2024-11-22 01:52:32,221 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:32,221 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:32,222 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-22 01:52:32,222 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:32,222 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:32,222 INFO L85 PathProgramCache]: Analyzing trace with hash 435953045, now seen corresponding path program 2 times [2024-11-22 01:52:32,222 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:32,222 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [292537838] [2024-11-22 01:52:32,222 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-11-22 01:52:32,222 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:32,248 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-11-22 01:52:32,248 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-22 01:52:32,344 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-22 01:52:32,344 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:32,344 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [292537838] [2024-11-22 01:52:32,344 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [292537838] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:32,344 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:32,345 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 01:52:32,345 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1903904945] [2024-11-22 01:52:32,345 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:32,346 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 01:52:32,346 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:32,346 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 01:52:32,346 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,347 INFO L87 Difference]: Start difference. First operand 403 states and 635 transitions. Second operand has 5 states, 5 states have (on average 14.0) internal successors, (70), 5 states have internal predecessors, (70), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,389 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:32,389 INFO L93 Difference]: Finished difference Result 781 states and 1235 transitions. [2024-11-22 01:52:32,389 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 01:52:32,390 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 14.0) internal successors, (70), 5 states have internal predecessors, (70), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) Word has length 109 [2024-11-22 01:52:32,390 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:32,392 INFO L225 Difference]: With dead ends: 781 [2024-11-22 01:52:32,392 INFO L226 Difference]: Without dead ends: 403 [2024-11-22 01:52:32,393 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,393 INFO L432 NwaCegarLoop]: 507 mSDtfsCounter, 2 mSDsluCounter, 1504 mSDsCounter, 0 mSdLazyCounter, 45 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2011 SdHoareTripleChecker+Invalid, 45 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 45 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:32,394 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2011 Invalid, 45 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 45 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:32,394 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 403 states. [2024-11-22 01:52:32,402 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 403 to 403. [2024-11-22 01:52:32,403 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 403 states, 313 states have (on average 1.5910543130990416) internal successors, (498), 319 states have internal predecessors, (498), 66 states have call successors, (66), 21 states have call predecessors, (66), 23 states have return successors, (70), 64 states have call predecessors, (70), 65 states have call successors, (70) [2024-11-22 01:52:32,404 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 403 states to 403 states and 634 transitions. [2024-11-22 01:52:32,405 INFO L78 Accepts]: Start accepts. Automaton has 403 states and 634 transitions. Word has length 109 [2024-11-22 01:52:32,405 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:32,405 INFO L471 AbstractCegarLoop]: Abstraction has 403 states and 634 transitions. [2024-11-22 01:52:32,405 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 14.0) internal successors, (70), 5 states have internal predecessors, (70), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,405 INFO L276 IsEmpty]: Start isEmpty. Operand 403 states and 634 transitions. [2024-11-22 01:52:32,407 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2024-11-22 01:52:32,407 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:32,407 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:32,407 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-22 01:52:32,407 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:32,407 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:32,408 INFO L85 PathProgramCache]: Analyzing trace with hash -1449078556, now seen corresponding path program 3 times [2024-11-22 01:52:32,408 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:32,408 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [677267650] [2024-11-22 01:52:32,408 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-22 01:52:32,408 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:32,431 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-11-22 01:52:32,432 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-22 01:52:32,500 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-22 01:52:32,501 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:32,501 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [677267650] [2024-11-22 01:52:32,501 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [677267650] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:32,501 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:32,501 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 01:52:32,501 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [681318469] [2024-11-22 01:52:32,501 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:32,501 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 01:52:32,501 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:32,502 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 01:52:32,502 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,502 INFO L87 Difference]: Start difference. First operand 403 states and 634 transitions. Second operand has 5 states, 5 states have (on average 14.2) internal successors, (71), 5 states have internal predecessors, (71), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,545 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:32,545 INFO L93 Difference]: Finished difference Result 783 states and 1241 transitions. [2024-11-22 01:52:32,545 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 01:52:32,546 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 14.2) internal successors, (71), 5 states have internal predecessors, (71), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) Word has length 110 [2024-11-22 01:52:32,546 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:32,548 INFO L225 Difference]: With dead ends: 783 [2024-11-22 01:52:32,548 INFO L226 Difference]: Without dead ends: 405 [2024-11-22 01:52:32,549 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,550 INFO L432 NwaCegarLoop]: 510 mSDtfsCounter, 1 mSDsluCounter, 1512 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2022 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:32,550 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2022 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:32,551 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 405 states. [2024-11-22 01:52:32,558 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 405 to 405. [2024-11-22 01:52:32,559 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 405 states, 314 states have (on average 1.589171974522293) internal successors, (499), 321 states have internal predecessors, (499), 66 states have call successors, (66), 21 states have call predecessors, (66), 24 states have return successors, (75), 64 states have call predecessors, (75), 65 states have call successors, (75) [2024-11-22 01:52:32,560 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 405 states to 405 states and 640 transitions. [2024-11-22 01:52:32,561 INFO L78 Accepts]: Start accepts. Automaton has 405 states and 640 transitions. Word has length 110 [2024-11-22 01:52:32,561 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:32,562 INFO L471 AbstractCegarLoop]: Abstraction has 405 states and 640 transitions. [2024-11-22 01:52:32,562 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 14.2) internal successors, (71), 5 states have internal predecessors, (71), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 3 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,562 INFO L276 IsEmpty]: Start isEmpty. Operand 405 states and 640 transitions. [2024-11-22 01:52:32,563 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 112 [2024-11-22 01:52:32,563 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:32,564 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:32,564 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-22 01:52:32,564 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:32,564 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:32,564 INFO L85 PathProgramCache]: Analyzing trace with hash 481850704, now seen corresponding path program 1 times [2024-11-22 01:52:32,564 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:32,564 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1534143267] [2024-11-22 01:52:32,565 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:32,565 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:32,582 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:32,698 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-22 01:52:32,698 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:32,698 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1534143267] [2024-11-22 01:52:32,698 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1534143267] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:32,698 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:32,698 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 01:52:32,698 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1220146154] [2024-11-22 01:52:32,699 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:32,699 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 01:52:32,699 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:32,700 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 01:52:32,700 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,700 INFO L87 Difference]: Start difference. First operand 405 states and 640 transitions. Second operand has 5 states, 4 states have (on average 18.25) internal successors, (73), 5 states have internal predecessors, (73), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,740 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:32,741 INFO L93 Difference]: Finished difference Result 789 states and 1251 transitions. [2024-11-22 01:52:32,741 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 01:52:32,741 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 18.25) internal successors, (73), 5 states have internal predecessors, (73), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) Word has length 111 [2024-11-22 01:52:32,741 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:32,743 INFO L225 Difference]: With dead ends: 789 [2024-11-22 01:52:32,743 INFO L226 Difference]: Without dead ends: 407 [2024-11-22 01:52:32,744 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 01:52:32,746 INFO L432 NwaCegarLoop]: 510 mSDtfsCounter, 1 mSDsluCounter, 1518 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2028 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:32,746 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2028 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:32,747 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 407 states. [2024-11-22 01:52:32,754 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 407 to 407. [2024-11-22 01:52:32,755 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 407 states, 315 states have (on average 1.5873015873015872) internal successors, (500), 323 states have internal predecessors, (500), 66 states have call successors, (66), 21 states have call predecessors, (66), 25 states have return successors, (77), 64 states have call predecessors, (77), 65 states have call successors, (77) [2024-11-22 01:52:32,757 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 407 states to 407 states and 643 transitions. [2024-11-22 01:52:32,757 INFO L78 Accepts]: Start accepts. Automaton has 407 states and 643 transitions. Word has length 111 [2024-11-22 01:52:32,758 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:32,758 INFO L471 AbstractCegarLoop]: Abstraction has 407 states and 643 transitions. [2024-11-22 01:52:32,758 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 18.25) internal successors, (73), 5 states have internal predecessors, (73), 3 states have call successors, (15), 2 states have call predecessors, (15), 2 states have return successors, (12), 2 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 01:52:32,758 INFO L276 IsEmpty]: Start isEmpty. Operand 407 states and 643 transitions. [2024-11-22 01:52:32,760 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 113 [2024-11-22 01:52:32,760 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:32,760 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:32,760 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-22 01:52:32,760 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:32,761 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:32,761 INFO L85 PathProgramCache]: Analyzing trace with hash -843374101, now seen corresponding path program 1 times [2024-11-22 01:52:32,761 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:32,761 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1886037687] [2024-11-22 01:52:32,761 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:32,761 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:32,780 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:32,839 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:32,839 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:32,839 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1886037687] [2024-11-22 01:52:32,839 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1886037687] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 01:52:32,839 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [486030969] [2024-11-22 01:52:32,839 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:32,840 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:32,840 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 01:52:32,842 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 01:52:32,843 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-22 01:52:33,044 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:33,050 INFO L255 TraceCheckSpWp]: Trace formula consists of 971 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 01:52:33,053 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 01:52:33,077 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:33,077 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-22 01:52:33,149 INFO L134 CoverageAnalysis]: Checked inductivity of 32 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:33,149 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [486030969] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-22 01:52:33,149 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-22 01:52:33,149 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2024-11-22 01:52:33,149 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1249809089] [2024-11-22 01:52:33,149 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-22 01:52:33,150 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-22 01:52:33,150 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:33,150 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-22 01:52:33,150 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-22 01:52:33,150 INFO L87 Difference]: Start difference. First operand 407 states and 643 transitions. Second operand has 7 states, 7 states have (on average 14.428571428571429) internal successors, (101), 7 states have internal predecessors, (101), 2 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-22 01:52:33,283 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:33,283 INFO L93 Difference]: Finished difference Result 972 states and 1589 transitions. [2024-11-22 01:52:33,283 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-22 01:52:33,284 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 14.428571428571429) internal successors, (101), 7 states have internal predecessors, (101), 2 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 112 [2024-11-22 01:52:33,284 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:33,287 INFO L225 Difference]: With dead ends: 972 [2024-11-22 01:52:33,287 INFO L226 Difference]: Without dead ends: 824 [2024-11-22 01:52:33,288 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 226 GetRequests, 221 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-22 01:52:33,288 INFO L432 NwaCegarLoop]: 548 mSDtfsCounter, 601 mSDsluCounter, 1294 mSDsCounter, 0 mSdLazyCounter, 84 mSolverCounterSat, 23 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 655 SdHoareTripleChecker+Valid, 1842 SdHoareTripleChecker+Invalid, 107 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 23 IncrementalHoareTripleChecker+Valid, 84 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:33,289 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [655 Valid, 1842 Invalid, 107 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [23 Valid, 84 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 01:52:33,289 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 824 states. [2024-11-22 01:52:33,304 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 824 to 800. [2024-11-22 01:52:33,305 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 800 states, 629 states have (on average 1.6422893481717011) internal successors, (1033), 637 states have internal predecessors, (1033), 145 states have call successors, (145), 21 states have call predecessors, (145), 25 states have return successors, (166), 143 states have call predecessors, (166), 144 states have call successors, (166) [2024-11-22 01:52:33,309 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 800 states to 800 states and 1344 transitions. [2024-11-22 01:52:33,309 INFO L78 Accepts]: Start accepts. Automaton has 800 states and 1344 transitions. Word has length 112 [2024-11-22 01:52:33,309 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:33,310 INFO L471 AbstractCegarLoop]: Abstraction has 800 states and 1344 transitions. [2024-11-22 01:52:33,310 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 14.428571428571429) internal successors, (101), 7 states have internal predecessors, (101), 2 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-22 01:52:33,310 INFO L276 IsEmpty]: Start isEmpty. Operand 800 states and 1344 transitions. [2024-11-22 01:52:33,313 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 119 [2024-11-22 01:52:33,313 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:33,313 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:33,323 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-11-22 01:52:33,516 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9,7 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 01:52:33,517 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:33,517 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:33,517 INFO L85 PathProgramCache]: Analyzing trace with hash -1148018674, now seen corresponding path program 1 times [2024-11-22 01:52:33,517 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:33,517 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2109619968] [2024-11-22 01:52:33,517 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:33,517 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:33,536 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:33,564 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:33,564 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:33,564 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2109619968] [2024-11-22 01:52:33,564 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2109619968] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:33,565 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:33,565 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:33,565 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2144945934] [2024-11-22 01:52:33,565 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:33,565 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:33,565 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:33,565 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:33,566 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:33,566 INFO L87 Difference]: Start difference. First operand 800 states and 1344 transitions. Second operand has 3 states, 3 states have (on average 26.0) internal successors, (78), 3 states have internal predecessors, (78), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:33,594 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:33,594 INFO L93 Difference]: Finished difference Result 1930 states and 3285 transitions. [2024-11-22 01:52:33,595 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:33,595 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.0) internal successors, (78), 3 states have internal predecessors, (78), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 118 [2024-11-22 01:52:33,595 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:33,601 INFO L225 Difference]: With dead ends: 1930 [2024-11-22 01:52:33,602 INFO L226 Difference]: Without dead ends: 1198 [2024-11-22 01:52:33,604 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:33,605 INFO L432 NwaCegarLoop]: 541 mSDtfsCounter, 124 mSDsluCounter, 516 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1057 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:33,605 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1057 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:33,606 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1198 states. [2024-11-22 01:52:33,635 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1198 to 1190. [2024-11-22 01:52:33,638 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1190 states, 940 states have (on average 1.652127659574468) internal successors, (1553), 948 states have internal predecessors, (1553), 224 states have call successors, (224), 21 states have call predecessors, (224), 25 states have return successors, (255), 222 states have call predecessors, (255), 223 states have call successors, (255) [2024-11-22 01:52:33,644 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1190 states to 1190 states and 2032 transitions. [2024-11-22 01:52:33,645 INFO L78 Accepts]: Start accepts. Automaton has 1190 states and 2032 transitions. Word has length 118 [2024-11-22 01:52:33,646 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:33,646 INFO L471 AbstractCegarLoop]: Abstraction has 1190 states and 2032 transitions. [2024-11-22 01:52:33,646 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.0) internal successors, (78), 3 states have internal predecessors, (78), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:33,646 INFO L276 IsEmpty]: Start isEmpty. Operand 1190 states and 2032 transitions. [2024-11-22 01:52:33,651 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 120 [2024-11-22 01:52:33,651 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:33,651 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:33,651 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-22 01:52:33,651 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:33,652 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:33,652 INFO L85 PathProgramCache]: Analyzing trace with hash -379042841, now seen corresponding path program 1 times [2024-11-22 01:52:33,652 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:33,652 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [325774367] [2024-11-22 01:52:33,652 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:33,652 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:33,672 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:33,711 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:33,711 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:33,711 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [325774367] [2024-11-22 01:52:33,712 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [325774367] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:33,712 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:33,712 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:33,712 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [473262230] [2024-11-22 01:52:33,712 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:33,712 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:33,712 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:33,713 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:33,713 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:33,713 INFO L87 Difference]: Start difference. First operand 1190 states and 2032 transitions. Second operand has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:33,778 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:33,778 INFO L93 Difference]: Finished difference Result 2879 states and 4943 transitions. [2024-11-22 01:52:33,779 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:33,779 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 119 [2024-11-22 01:52:33,779 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:33,787 INFO L225 Difference]: With dead ends: 2879 [2024-11-22 01:52:33,787 INFO L226 Difference]: Without dead ends: 1810 [2024-11-22 01:52:33,790 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:33,790 INFO L432 NwaCegarLoop]: 517 mSDtfsCounter, 122 mSDsluCounter, 509 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1026 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:33,791 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1026 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:33,792 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1810 states. [2024-11-22 01:52:33,834 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1810 to 1802. [2024-11-22 01:52:33,836 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1802 states, 1433 states have (on average 1.658060013956734) internal successors, (2376), 1441 states have internal predecessors, (2376), 343 states have call successors, (343), 21 states have call predecessors, (343), 25 states have return successors, (374), 341 states have call predecessors, (374), 342 states have call successors, (374) [2024-11-22 01:52:33,843 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1802 states to 1802 states and 3093 transitions. [2024-11-22 01:52:33,845 INFO L78 Accepts]: Start accepts. Automaton has 1802 states and 3093 transitions. Word has length 119 [2024-11-22 01:52:33,845 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:33,845 INFO L471 AbstractCegarLoop]: Abstraction has 1802 states and 3093 transitions. [2024-11-22 01:52:33,845 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:33,846 INFO L276 IsEmpty]: Start isEmpty. Operand 1802 states and 3093 transitions. [2024-11-22 01:52:33,853 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 121 [2024-11-22 01:52:33,853 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:33,853 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:33,853 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-22 01:52:33,853 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:33,854 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:33,854 INFO L85 PathProgramCache]: Analyzing trace with hash 2117822860, now seen corresponding path program 1 times [2024-11-22 01:52:33,854 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:33,854 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [625106554] [2024-11-22 01:52:33,854 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:33,854 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:33,872 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:33,898 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:33,898 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:33,898 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [625106554] [2024-11-22 01:52:33,898 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [625106554] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:33,898 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:33,898 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:33,899 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1791725190] [2024-11-22 01:52:33,899 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:33,899 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:33,899 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:33,899 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:33,899 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:33,900 INFO L87 Difference]: Start difference. First operand 1802 states and 3093 transitions. Second operand has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:33,961 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:33,961 INFO L93 Difference]: Finished difference Result 4304 states and 7443 transitions. [2024-11-22 01:52:33,961 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:33,962 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 120 [2024-11-22 01:52:33,962 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:33,977 INFO L225 Difference]: With dead ends: 4304 [2024-11-22 01:52:33,977 INFO L226 Difference]: Without dead ends: 2748 [2024-11-22 01:52:33,984 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:33,985 INFO L432 NwaCegarLoop]: 515 mSDtfsCounter, 120 mSDsluCounter, 506 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1021 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:33,986 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1021 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:33,988 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2748 states. [2024-11-22 01:52:34,118 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2748 to 2740. [2024-11-22 01:52:34,124 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2740 states, 2209 states have (on average 1.663196016296967) internal successors, (3674), 2217 states have internal predecessors, (3674), 505 states have call successors, (505), 21 states have call predecessors, (505), 25 states have return successors, (552), 503 states have call predecessors, (552), 504 states have call successors, (552) [2024-11-22 01:52:34,136 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2740 states to 2740 states and 4731 transitions. [2024-11-22 01:52:34,138 INFO L78 Accepts]: Start accepts. Automaton has 2740 states and 4731 transitions. Word has length 120 [2024-11-22 01:52:34,138 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:34,138 INFO L471 AbstractCegarLoop]: Abstraction has 2740 states and 4731 transitions. [2024-11-22 01:52:34,139 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:34,139 INFO L276 IsEmpty]: Start isEmpty. Operand 2740 states and 4731 transitions. [2024-11-22 01:52:34,149 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-22 01:52:34,149 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:34,150 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:34,150 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-11-22 01:52:34,150 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:34,150 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:34,150 INFO L85 PathProgramCache]: Analyzing trace with hash -567709178, now seen corresponding path program 1 times [2024-11-22 01:52:34,150 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:34,151 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [37204722] [2024-11-22 01:52:34,151 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:34,151 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:34,172 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:34,204 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:34,205 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:34,205 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [37204722] [2024-11-22 01:52:34,205 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [37204722] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:34,205 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:34,205 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:34,205 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1471823034] [2024-11-22 01:52:34,205 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:34,205 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:34,205 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:34,206 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:34,206 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:34,206 INFO L87 Difference]: Start difference. First operand 2740 states and 4731 transitions. Second operand has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:34,298 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:34,298 INFO L93 Difference]: Finished difference Result 6553 states and 11395 transitions. [2024-11-22 01:52:34,298 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:34,299 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 121 [2024-11-22 01:52:34,299 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:34,323 INFO L225 Difference]: With dead ends: 6553 [2024-11-22 01:52:34,323 INFO L226 Difference]: Without dead ends: 4263 [2024-11-22 01:52:34,333 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:34,334 INFO L432 NwaCegarLoop]: 515 mSDtfsCounter, 118 mSDsluCounter, 506 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1021 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:34,334 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1021 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:34,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4263 states. [2024-11-22 01:52:34,519 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4263 to 4255. [2024-11-22 01:52:34,526 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4255 states, 3479 states have (on average 1.6668582926128197) internal successors, (5799), 3487 states have internal predecessors, (5799), 750 states have call successors, (750), 21 states have call predecessors, (750), 25 states have return successors, (823), 748 states have call predecessors, (823), 749 states have call successors, (823) [2024-11-22 01:52:34,544 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4255 states to 4255 states and 7372 transitions. [2024-11-22 01:52:34,546 INFO L78 Accepts]: Start accepts. Automaton has 4255 states and 7372 transitions. Word has length 121 [2024-11-22 01:52:34,547 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:34,547 INFO L471 AbstractCegarLoop]: Abstraction has 4255 states and 7372 transitions. [2024-11-22 01:52:34,547 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.0) internal successors, (81), 3 states have internal predecessors, (81), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:34,547 INFO L276 IsEmpty]: Start isEmpty. Operand 4255 states and 7372 transitions. [2024-11-22 01:52:34,558 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 123 [2024-11-22 01:52:34,559 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:34,559 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:34,559 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2024-11-22 01:52:34,559 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:34,559 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:34,560 INFO L85 PathProgramCache]: Analyzing trace with hash -1406541776, now seen corresponding path program 1 times [2024-11-22 01:52:34,560 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:34,560 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [278231926] [2024-11-22 01:52:34,560 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:34,560 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:34,582 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:34,618 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:34,619 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:34,619 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [278231926] [2024-11-22 01:52:34,619 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [278231926] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:34,619 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:34,619 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:34,619 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1283023663] [2024-11-22 01:52:34,619 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:34,619 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:34,619 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:34,620 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:34,620 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:34,620 INFO L87 Difference]: Start difference. First operand 4255 states and 7372 transitions. Second operand has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:34,767 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:34,767 INFO L93 Difference]: Finished difference Result 10569 states and 18407 transitions. [2024-11-22 01:52:34,767 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:34,768 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 122 [2024-11-22 01:52:34,768 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:34,804 INFO L225 Difference]: With dead ends: 10569 [2024-11-22 01:52:34,804 INFO L226 Difference]: Without dead ends: 6996 [2024-11-22 01:52:34,819 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:34,820 INFO L432 NwaCegarLoop]: 528 mSDtfsCounter, 116 mSDsluCounter, 513 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1041 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:34,820 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1041 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:34,826 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 6996 states. [2024-11-22 01:52:35,092 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 6996 to 6988. [2024-11-22 01:52:35,108 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 6988 states, 5719 states have (on average 1.6618289910823572) internal successors, (9504), 5727 states have internal predecessors, (9504), 1243 states have call successors, (1243), 21 states have call predecessors, (1243), 25 states have return successors, (1360), 1241 states have call predecessors, (1360), 1242 states have call successors, (1360) [2024-11-22 01:52:35,138 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6988 states to 6988 states and 12107 transitions. [2024-11-22 01:52:35,142 INFO L78 Accepts]: Start accepts. Automaton has 6988 states and 12107 transitions. Word has length 122 [2024-11-22 01:52:35,142 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:35,142 INFO L471 AbstractCegarLoop]: Abstraction has 6988 states and 12107 transitions. [2024-11-22 01:52:35,142 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:35,142 INFO L276 IsEmpty]: Start isEmpty. Operand 6988 states and 12107 transitions. [2024-11-22 01:52:35,159 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 124 [2024-11-22 01:52:35,160 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:35,160 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:35,160 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2024-11-22 01:52:35,160 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:35,161 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:35,161 INFO L85 PathProgramCache]: Analyzing trace with hash -1060285598, now seen corresponding path program 1 times [2024-11-22 01:52:35,161 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:35,161 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [365179696] [2024-11-22 01:52:35,161 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:35,161 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:35,183 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:35,209 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:35,210 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:35,210 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [365179696] [2024-11-22 01:52:35,210 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [365179696] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:35,210 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:35,210 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:35,210 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [680799096] [2024-11-22 01:52:35,210 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:35,211 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:35,211 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:35,211 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:35,211 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:35,211 INFO L87 Difference]: Start difference. First operand 6988 states and 12107 transitions. Second operand has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:35,489 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:35,489 INFO L93 Difference]: Finished difference Result 17709 states and 30868 transitions. [2024-11-22 01:52:35,490 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:35,490 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 123 [2024-11-22 01:52:35,490 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:35,552 INFO L225 Difference]: With dead ends: 17709 [2024-11-22 01:52:35,552 INFO L226 Difference]: Without dead ends: 11780 [2024-11-22 01:52:35,581 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:35,582 INFO L432 NwaCegarLoop]: 517 mSDtfsCounter, 114 mSDsluCounter, 509 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 132 SdHoareTripleChecker+Valid, 1026 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:35,582 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [132 Valid, 1026 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:35,593 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 11780 states. [2024-11-22 01:52:36,077 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 11780 to 11772. [2024-11-22 01:52:36,102 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11772 states, 9681 states have (on average 1.6611920256171884) internal successors, (16082), 9689 states have internal predecessors, (16082), 2065 states have call successors, (2065), 21 states have call predecessors, (2065), 25 states have return successors, (2260), 2063 states have call predecessors, (2260), 2064 states have call successors, (2260) [2024-11-22 01:52:36,157 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11772 states to 11772 states and 20407 transitions. [2024-11-22 01:52:36,167 INFO L78 Accepts]: Start accepts. Automaton has 11772 states and 20407 transitions. Word has length 123 [2024-11-22 01:52:36,167 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:36,167 INFO L471 AbstractCegarLoop]: Abstraction has 11772 states and 20407 transitions. [2024-11-22 01:52:36,168 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:36,168 INFO L276 IsEmpty]: Start isEmpty. Operand 11772 states and 20407 transitions. [2024-11-22 01:52:36,193 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 125 [2024-11-22 01:52:36,193 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:36,193 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:36,193 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2024-11-22 01:52:36,193 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:36,194 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:36,194 INFO L85 PathProgramCache]: Analyzing trace with hash 205419470, now seen corresponding path program 1 times [2024-11-22 01:52:36,194 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:36,194 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [644078991] [2024-11-22 01:52:36,194 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:36,194 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:36,217 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:36,254 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:36,255 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:36,255 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [644078991] [2024-11-22 01:52:36,255 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [644078991] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:36,255 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:36,255 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:36,255 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1390993251] [2024-11-22 01:52:36,256 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:36,256 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:36,256 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:36,257 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:36,257 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:36,257 INFO L87 Difference]: Start difference. First operand 11772 states and 20407 transitions. Second operand has 3 states, 3 states have (on average 28.0) internal successors, (84), 3 states have internal predecessors, (84), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:36,704 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:36,704 INFO L93 Difference]: Finished difference Result 28142 states and 48712 transitions. [2024-11-22 01:52:36,704 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:36,705 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.0) internal successors, (84), 3 states have internal predecessors, (84), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 124 [2024-11-22 01:52:36,705 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:36,784 INFO L225 Difference]: With dead ends: 28142 [2024-11-22 01:52:36,785 INFO L226 Difference]: Without dead ends: 18373 [2024-11-22 01:52:36,829 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:36,829 INFO L432 NwaCegarLoop]: 515 mSDtfsCounter, 112 mSDsluCounter, 481 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 130 SdHoareTripleChecker+Valid, 996 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:36,830 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [130 Valid, 996 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:36,846 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18373 states. [2024-11-22 01:52:37,531 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18373 to 18365. [2024-11-22 01:52:37,561 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18365 states, 15071 states have (on average 1.6354588282131246) internal successors, (24648), 15079 states have internal predecessors, (24648), 3268 states have call successors, (3268), 21 states have call predecessors, (3268), 25 states have return successors, (3607), 3266 states have call predecessors, (3607), 3267 states have call successors, (3607) [2024-11-22 01:52:37,632 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18365 states to 18365 states and 31523 transitions. [2024-11-22 01:52:37,642 INFO L78 Accepts]: Start accepts. Automaton has 18365 states and 31523 transitions. Word has length 124 [2024-11-22 01:52:37,643 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:37,643 INFO L471 AbstractCegarLoop]: Abstraction has 18365 states and 31523 transitions. [2024-11-22 01:52:37,644 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.0) internal successors, (84), 3 states have internal predecessors, (84), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:37,644 INFO L276 IsEmpty]: Start isEmpty. Operand 18365 states and 31523 transitions. [2024-11-22 01:52:37,671 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 126 [2024-11-22 01:52:37,671 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:37,671 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:37,672 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2024-11-22 01:52:37,672 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:37,672 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:37,672 INFO L85 PathProgramCache]: Analyzing trace with hash 1061974497, now seen corresponding path program 1 times [2024-11-22 01:52:37,672 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:37,673 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [227656357] [2024-11-22 01:52:37,673 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:37,673 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:37,697 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:37,728 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:37,729 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:37,729 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [227656357] [2024-11-22 01:52:37,729 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [227656357] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:37,729 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:37,729 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:37,729 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1007264895] [2024-11-22 01:52:37,730 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:37,730 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:37,731 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:37,731 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:37,731 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:37,732 INFO L87 Difference]: Start difference. First operand 18365 states and 31523 transitions. Second operand has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:38,729 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:38,729 INFO L93 Difference]: Finished difference Result 48564 states and 83676 transitions. [2024-11-22 01:52:38,730 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:38,730 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 125 [2024-11-22 01:52:38,730 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:38,881 INFO L225 Difference]: With dead ends: 48564 [2024-11-22 01:52:38,881 INFO L226 Difference]: Without dead ends: 32809 [2024-11-22 01:52:38,927 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:38,928 INFO L432 NwaCegarLoop]: 515 mSDtfsCounter, 110 mSDsluCounter, 509 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1024 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:38,928 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1024 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 01:52:38,955 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 32809 states. [2024-11-22 01:52:40,022 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 32809 to 32801. [2024-11-22 01:52:40,079 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32801 states, 27057 states have (on average 1.6319251949587907) internal successors, (44155), 27065 states have internal predecessors, (44155), 5718 states have call successors, (5718), 21 states have call predecessors, (5718), 25 states have return successors, (6331), 5716 states have call predecessors, (6331), 5717 states have call successors, (6331) [2024-11-22 01:52:40,226 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32801 states to 32801 states and 56204 transitions. [2024-11-22 01:52:40,242 INFO L78 Accepts]: Start accepts. Automaton has 32801 states and 56204 transitions. Word has length 125 [2024-11-22 01:52:40,242 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:40,243 INFO L471 AbstractCegarLoop]: Abstraction has 32801 states and 56204 transitions. [2024-11-22 01:52:40,243 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:40,243 INFO L276 IsEmpty]: Start isEmpty. Operand 32801 states and 56204 transitions. [2024-11-22 01:52:40,269 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 127 [2024-11-22 01:52:40,270 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:40,270 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:40,270 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2024-11-22 01:52:40,270 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:40,270 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:40,271 INFO L85 PathProgramCache]: Analyzing trace with hash 277723476, now seen corresponding path program 1 times [2024-11-22 01:52:40,271 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:40,271 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1155276274] [2024-11-22 01:52:40,271 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:40,271 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:40,293 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:40,325 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:40,326 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:40,326 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1155276274] [2024-11-22 01:52:40,326 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1155276274] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:40,326 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:40,326 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:40,326 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1793393578] [2024-11-22 01:52:40,327 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:40,327 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:40,327 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:40,328 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:40,328 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:40,328 INFO L87 Difference]: Start difference. First operand 32801 states and 56204 transitions. Second operand has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:41,958 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:41,959 INFO L93 Difference]: Finished difference Result 89461 states and 153778 transitions. [2024-11-22 01:52:41,959 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:41,959 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 126 [2024-11-22 01:52:41,960 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:42,232 INFO L225 Difference]: With dead ends: 89461 [2024-11-22 01:52:42,232 INFO L226 Difference]: Without dead ends: 60146 [2024-11-22 01:52:42,307 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:42,308 INFO L432 NwaCegarLoop]: 516 mSDtfsCounter, 108 mSDsluCounter, 509 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 126 SdHoareTripleChecker+Valid, 1025 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:42,308 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [126 Valid, 1025 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:42,356 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 60146 states. [2024-11-22 01:52:44,241 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 60146 to 60138. [2024-11-22 01:52:44,324 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 60138 states, 49881 states have (on average 1.6274332912331348) internal successors, (81178), 49889 states have internal predecessors, (81178), 10231 states have call successors, (10231), 21 states have call predecessors, (10231), 25 states have return successors, (11376), 10229 states have call predecessors, (11376), 10230 states have call successors, (11376) [2024-11-22 01:52:44,573 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 60138 states to 60138 states and 102785 transitions. [2024-11-22 01:52:44,607 INFO L78 Accepts]: Start accepts. Automaton has 60138 states and 102785 transitions. Word has length 126 [2024-11-22 01:52:44,608 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:44,608 INFO L471 AbstractCegarLoop]: Abstraction has 60138 states and 102785 transitions. [2024-11-22 01:52:44,608 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:44,608 INFO L276 IsEmpty]: Start isEmpty. Operand 60138 states and 102785 transitions. [2024-11-22 01:52:44,639 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 128 [2024-11-22 01:52:44,640 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:44,640 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:44,640 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2024-11-22 01:52:44,640 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:44,641 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:44,641 INFO L85 PathProgramCache]: Analyzing trace with hash -333345311, now seen corresponding path program 1 times [2024-11-22 01:52:44,641 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:44,641 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [618461333] [2024-11-22 01:52:44,641 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:44,641 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:44,668 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:44,702 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:44,702 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:44,702 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [618461333] [2024-11-22 01:52:44,703 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [618461333] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:44,703 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:44,703 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 01:52:44,703 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1557245293] [2024-11-22 01:52:44,703 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:44,704 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 01:52:44,704 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:44,704 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 01:52:44,704 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:44,704 INFO L87 Difference]: Start difference. First operand 60138 states and 102785 transitions. Second operand has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:47,199 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:47,199 INFO L93 Difference]: Finished difference Result 112552 states and 192787 transitions. [2024-11-22 01:52:47,200 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 01:52:47,200 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) Word has length 127 [2024-11-22 01:52:47,201 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:47,746 INFO L225 Difference]: With dead ends: 112552 [2024-11-22 01:52:47,747 INFO L226 Difference]: Without dead ends: 112404 [2024-11-22 01:52:47,793 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 01:52:47,795 INFO L432 NwaCegarLoop]: 524 mSDtfsCounter, 103 mSDsluCounter, 514 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 1038 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:47,795 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 1038 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 01:52:47,877 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 112404 states. [2024-11-22 01:52:50,954 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 112404 to 112396. [2024-11-22 01:52:51,074 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 112396 states, 93771 states have (on average 1.6218766996192853) internal successors, (152085), 93779 states have internal predecessors, (152085), 18599 states have call successors, (18599), 21 states have call predecessors, (18599), 25 states have return successors, (20790), 18597 states have call predecessors, (20790), 18598 states have call successors, (20790) [2024-11-22 01:52:52,023 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 112396 states to 112396 states and 191474 transitions. [2024-11-22 01:52:52,073 INFO L78 Accepts]: Start accepts. Automaton has 112396 states and 191474 transitions. Word has length 127 [2024-11-22 01:52:52,073 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:52:52,073 INFO L471 AbstractCegarLoop]: Abstraction has 112396 states and 191474 transitions. [2024-11-22 01:52:52,074 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (15), 2 states have call predecessors, (15), 1 states have return successors, (12), 2 states have call predecessors, (12), 2 states have call successors, (12) [2024-11-22 01:52:52,074 INFO L276 IsEmpty]: Start isEmpty. Operand 112396 states and 191474 transitions. [2024-11-22 01:52:52,107 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 129 [2024-11-22 01:52:52,107 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:52:52,107 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:52:52,108 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2024-11-22 01:52:52,108 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:52:52,108 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:52:52,108 INFO L85 PathProgramCache]: Analyzing trace with hash -1394347435, now seen corresponding path program 1 times [2024-11-22 01:52:52,108 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:52:52,108 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [496274644] [2024-11-22 01:52:52,109 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:52:52,109 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:52:52,137 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:52:52,474 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:52:52,474 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:52:52,474 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [496274644] [2024-11-22 01:52:52,474 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [496274644] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:52:52,475 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:52:52,475 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [12] imperfect sequences [] total 12 [2024-11-22 01:52:52,475 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1761671628] [2024-11-22 01:52:52,475 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:52:52,475 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-11-22 01:52:52,476 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:52:52,476 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-11-22 01:52:52,476 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=111, Unknown=0, NotChecked=0, Total=132 [2024-11-22 01:52:52,477 INFO L87 Difference]: Start difference. First operand 112396 states and 191474 transitions. Second operand has 12 states, 11 states have (on average 8.0) internal successors, (88), 10 states have internal predecessors, (88), 5 states have call successors, (15), 3 states have call predecessors, (15), 3 states have return successors, (12), 6 states have call predecessors, (12), 5 states have call successors, (12) [2024-11-22 01:52:57,822 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 01:52:57,822 INFO L93 Difference]: Finished difference Result 223912 states and 386932 transitions. [2024-11-22 01:52:57,822 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-11-22 01:52:57,822 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 11 states have (on average 8.0) internal successors, (88), 10 states have internal predecessors, (88), 5 states have call successors, (15), 3 states have call predecessors, (15), 3 states have return successors, (12), 6 states have call predecessors, (12), 5 states have call successors, (12) Word has length 128 [2024-11-22 01:52:57,823 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 01:52:59,354 INFO L225 Difference]: With dead ends: 223912 [2024-11-22 01:52:59,355 INFO L226 Difference]: Without dead ends: 223770 [2024-11-22 01:52:59,450 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 29 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 24 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 69 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=125, Invalid=525, Unknown=0, NotChecked=0, Total=650 [2024-11-22 01:52:59,451 INFO L432 NwaCegarLoop]: 609 mSDtfsCounter, 1313 mSDsluCounter, 5212 mSDsCounter, 0 mSdLazyCounter, 960 mSolverCounterSat, 354 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1313 SdHoareTripleChecker+Valid, 5821 SdHoareTripleChecker+Invalid, 1314 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 354 IncrementalHoareTripleChecker+Valid, 960 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.7s IncrementalHoareTripleChecker+Time [2024-11-22 01:52:59,451 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1313 Valid, 5821 Invalid, 1314 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [354 Valid, 960 Invalid, 0 Unknown, 0 Unchecked, 0.7s Time] [2024-11-22 01:52:59,577 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 223770 states. [2024-11-22 01:53:07,438 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 223770 to 223735. [2024-11-22 01:53:07,655 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 223735 states, 186732 states have (on average 1.6225499646552277) internal successors, (302982), 186637 states have internal predecessors, (302982), 36942 states have call successors, (36942), 54 states have call predecessors, (36942), 60 states have return successors, (44598), 37049 states have call predecessors, (44598), 36939 states have call successors, (44598) [2024-11-22 01:53:08,450 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 223735 states to 223735 states and 384522 transitions. [2024-11-22 01:53:08,507 INFO L78 Accepts]: Start accepts. Automaton has 223735 states and 384522 transitions. Word has length 128 [2024-11-22 01:53:08,508 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 01:53:08,508 INFO L471 AbstractCegarLoop]: Abstraction has 223735 states and 384522 transitions. [2024-11-22 01:53:08,508 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 11 states have (on average 8.0) internal successors, (88), 10 states have internal predecessors, (88), 5 states have call successors, (15), 3 states have call predecessors, (15), 3 states have return successors, (12), 6 states have call predecessors, (12), 5 states have call successors, (12) [2024-11-22 01:53:08,508 INFO L276 IsEmpty]: Start isEmpty. Operand 223735 states and 384522 transitions. [2024-11-22 01:53:08,569 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-22 01:53:08,569 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 01:53:08,569 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 01:53:08,569 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable20 [2024-11-22 01:53:08,570 INFO L396 AbstractCegarLoop]: === Iteration 22 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 01:53:08,570 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 01:53:08,570 INFO L85 PathProgramCache]: Analyzing trace with hash -474322754, now seen corresponding path program 1 times [2024-11-22 01:53:08,570 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 01:53:08,570 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1125888802] [2024-11-22 01:53:08,570 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 01:53:08,571 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 01:53:08,590 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 01:53:08,734 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-22 01:53:08,734 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 01:53:08,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1125888802] [2024-11-22 01:53:08,735 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1125888802] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 01:53:08,735 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 01:53:08,735 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2024-11-22 01:53:08,735 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [989622782] [2024-11-22 01:53:08,735 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 01:53:08,735 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-11-22 01:53:08,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 01:53:08,736 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-11-22 01:53:08,736 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=73, Unknown=0, NotChecked=0, Total=90 [2024-11-22 01:53:08,736 INFO L87 Difference]: Start difference. First operand 223735 states and 384522 transitions. Second operand has 10 states, 10 states have (on average 8.9) internal successors, (89), 7 states have internal predecessors, (89), 5 states have call successors, (15), 4 states have call predecessors, (15), 1 states have return successors, (12), 5 states have call predecessors, (12), 5 states have call successors, (12)