./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/email_spec1_product34.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 6497de01 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/email_spec1_product34.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 76fb98768a82c6e881c4461160153969b956a6a73a8217d33a39b93921ba72b5 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-6497de0 [2024-11-24 01:20:07,830 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-24 01:20:07,942 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-24 01:20:07,948 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-24 01:20:07,949 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-24 01:20:07,981 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-24 01:20:07,983 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-24 01:20:07,983 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-24 01:20:07,984 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-24 01:20:07,984 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-24 01:20:07,986 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-24 01:20:07,986 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-24 01:20:07,986 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-24 01:20:07,987 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-24 01:20:07,987 INFO L153 SettingsManager]: * Use SBE=true [2024-11-24 01:20:07,987 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-24 01:20:07,987 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-24 01:20:07,988 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-24 01:20:07,988 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-24 01:20:07,988 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-24 01:20:07,988 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-24 01:20:07,988 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-24 01:20:07,988 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-24 01:20:07,989 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-24 01:20:07,989 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-24 01:20:07,989 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-24 01:20:07,989 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2024-11-24 01:20:07,989 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-24 01:20:07,989 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-24 01:20:07,989 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-24 01:20:07,990 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-24 01:20:07,990 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-24 01:20:07,990 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 01:20:07,991 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-24 01:20:07,991 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-24 01:20:07,991 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-24 01:20:07,991 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-24 01:20:07,991 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 01:20:07,991 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-24 01:20:07,991 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-24 01:20:07,992 INFO L153 SettingsManager]: * Compute procedure contracts=false [2024-11-24 01:20:07,992 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-24 01:20:07,992 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-24 01:20:07,992 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-24 01:20:07,992 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-24 01:20:07,992 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-24 01:20:07,993 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-24 01:20:07,993 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-24 01:20:07,993 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 76fb98768a82c6e881c4461160153969b956a6a73a8217d33a39b93921ba72b5 [2024-11-24 01:20:08,346 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-24 01:20:08,355 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-24 01:20:08,358 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-24 01:20:08,359 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-24 01:20:08,360 INFO L274 PluginConnector]: CDTParser initialized [2024-11-24 01:20:08,361 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/../../sv-benchmarks/c/product-lines/email_spec1_product34.cil.c [2024-11-24 01:20:11,547 INFO L533 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/data/90dd98443/eafa054b9f9249eab95bff66ff9e0bc4/FLAG2f047e77c [2024-11-24 01:20:12,042 INFO L384 CDTParser]: Found 1 translation units. [2024-11-24 01:20:12,043 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/sv-benchmarks/c/product-lines/email_spec1_product34.cil.c [2024-11-24 01:20:12,077 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/data/90dd98443/eafa054b9f9249eab95bff66ff9e0bc4/FLAG2f047e77c [2024-11-24 01:20:12,105 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/data/90dd98443/eafa054b9f9249eab95bff66ff9e0bc4 [2024-11-24 01:20:12,108 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-24 01:20:12,110 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-24 01:20:12,112 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-24 01:20:12,112 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-24 01:20:12,117 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-24 01:20:12,119 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 24.11 01:20:12" (1/1) ... [2024-11-24 01:20:12,120 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@615d83b6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:12, skipping insertion in model container [2024-11-24 01:20:12,120 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 24.11 01:20:12" (1/1) ... [2024-11-24 01:20:12,194 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-24 01:20:12,451 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/sv-benchmarks/c/product-lines/email_spec1_product34.cil.c[2480,2493] [2024-11-24 01:20:12,934 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-24 01:20:12,958 INFO L200 MainTranslator]: Completed pre-run [2024-11-24 01:20:12,966 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"AddressBookEncrypt_spec.i","") [48] [2024-11-24 01:20:12,968 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [90] [2024-11-24 01:20:12,968 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [99] [2024-11-24 01:20:12,969 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [117] [2024-11-24 01:20:12,969 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [483] [2024-11-24 01:20:12,969 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [1563] [2024-11-24 01:20:12,969 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [1601] [2024-11-24 01:20:12,969 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [2021] [2024-11-24 01:20:12,970 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [2250] [2024-11-24 01:20:12,970 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2387] [2024-11-24 01:20:12,970 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [2784] [2024-11-24 01:20:12,975 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/sv-benchmarks/c/product-lines/email_spec1_product34.cil.c[2480,2493] [2024-11-24 01:20:13,091 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-24 01:20:13,127 INFO L204 MainTranslator]: Completed translation [2024-11-24 01:20:13,127 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13 WrapperNode [2024-11-24 01:20:13,128 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-24 01:20:13,129 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-24 01:20:13,129 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-24 01:20:13,129 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-24 01:20:13,137 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,180 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,282 INFO L138 Inliner]: procedures = 134, calls = 219, calls flagged for inlining = 62, calls inlined = 59, statements flattened = 1102 [2024-11-24 01:20:13,287 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-24 01:20:13,287 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-24 01:20:13,288 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-24 01:20:13,288 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-24 01:20:13,303 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,303 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,314 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,376 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2024-11-24 01:20:13,380 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,381 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,408 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,411 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,422 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,427 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,431 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,448 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-24 01:20:13,453 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-24 01:20:13,453 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-24 01:20:13,453 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-24 01:20:13,455 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (1/1) ... [2024-11-24 01:20:13,469 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 01:20:13,499 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:20:13,517 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-24 01:20:13,525 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-24 01:20:13,561 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2024-11-24 01:20:13,562 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2024-11-24 01:20:13,562 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2024-11-24 01:20:13,562 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2024-11-24 01:20:13,563 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2024-11-24 01:20:13,563 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2024-11-24 01:20:13,563 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2024-11-24 01:20:13,563 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2024-11-24 01:20:13,564 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2024-11-24 01:20:13,564 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2024-11-24 01:20:13,565 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2024-11-24 01:20:13,565 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2024-11-24 01:20:13,565 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2024-11-24 01:20:13,565 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2024-11-24 01:20:13,566 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2024-11-24 01:20:13,566 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2024-11-24 01:20:13,566 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2024-11-24 01:20:13,566 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2024-11-24 01:20:13,566 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2024-11-24 01:20:13,569 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2024-11-24 01:20:13,569 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2024-11-24 01:20:13,570 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2024-11-24 01:20:13,570 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2024-11-24 01:20:13,571 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2024-11-24 01:20:13,571 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2024-11-24 01:20:13,572 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2024-11-24 01:20:13,572 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2024-11-24 01:20:13,572 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2024-11-24 01:20:13,572 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-24 01:20:13,572 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-24 01:20:13,922 INFO L234 CfgBuilder]: Building ICFG [2024-11-24 01:20:13,925 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-24 01:20:15,552 INFO L? ?]: Removed 583 outVars from TransFormulas that were not future-live. [2024-11-24 01:20:15,553 INFO L283 CfgBuilder]: Performing block encoding [2024-11-24 01:20:15,588 INFO L307 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-24 01:20:15,593 INFO L312 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-24 01:20:15,593 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 24.11 01:20:15 BoogieIcfgContainer [2024-11-24 01:20:15,593 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-24 01:20:15,600 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-24 01:20:15,600 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-24 01:20:15,605 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-24 01:20:15,606 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 24.11 01:20:12" (1/3) ... [2024-11-24 01:20:15,607 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@468693d4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 24.11 01:20:15, skipping insertion in model container [2024-11-24 01:20:15,607 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:20:13" (2/3) ... [2024-11-24 01:20:15,608 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@468693d4 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 24.11 01:20:15, skipping insertion in model container [2024-11-24 01:20:15,608 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 24.11 01:20:15" (3/3) ... [2024-11-24 01:20:15,611 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec1_product34.cil.c [2024-11-24 01:20:15,627 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-24 01:20:15,631 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec1_product34.cil.c that has 29 procedures, 446 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2024-11-24 01:20:15,724 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-24 01:20:15,742 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@422a1047, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-24 01:20:15,742 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-24 01:20:15,749 INFO L276 IsEmpty]: Start isEmpty. Operand has 446 states, 345 states have (on average 1.5391304347826087) internal successors, (531), 350 states have internal predecessors, (531), 71 states have call successors, (71), 28 states have call predecessors, (71), 28 states have return successors, (71), 70 states have call predecessors, (71), 71 states have call successors, (71) [2024-11-24 01:20:15,776 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2024-11-24 01:20:15,776 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:15,778 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:15,778 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:15,784 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:15,785 INFO L85 PathProgramCache]: Analyzing trace with hash 1736509623, now seen corresponding path program 1 times [2024-11-24 01:20:15,793 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:15,793 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [309198690] [2024-11-24 01:20:15,794 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:15,794 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:15,993 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:16,827 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-24 01:20:16,828 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:16,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [309198690] [2024-11-24 01:20:16,831 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [309198690] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:20:16,831 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1944124180] [2024-11-24 01:20:16,832 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:16,832 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:16,832 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:20:16,837 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:20:16,843 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-24 01:20:17,364 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:17,370 INFO L256 TraceCheckSpWp]: Trace formula consists of 1103 conjuncts, 2 conjuncts are in the unsatisfiable core [2024-11-24 01:20:17,380 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:20:17,445 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-24 01:20:17,445 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:20:17,450 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1944124180] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:17,450 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:20:17,450 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-24 01:20:17,452 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [257753754] [2024-11-24 01:20:17,453 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:17,457 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:17,458 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:17,488 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:17,489 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:20:17,493 INFO L87 Difference]: Start difference. First operand has 446 states, 345 states have (on average 1.5391304347826087) internal successors, (531), 350 states have internal predecessors, (531), 71 states have call successors, (71), 28 states have call predecessors, (71), 28 states have return successors, (71), 70 states have call predecessors, (71), 71 states have call successors, (71) Second operand has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:17,641 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:17,642 INFO L93 Difference]: Finished difference Result 702 states and 1042 transitions. [2024-11-24 01:20:17,643 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:17,644 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 110 [2024-11-24 01:20:17,645 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:17,661 INFO L225 Difference]: With dead ends: 702 [2024-11-24 01:20:17,662 INFO L226 Difference]: Without dead ends: 441 [2024-11-24 01:20:17,669 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 114 GetRequests, 110 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:20:17,673 INFO L435 NwaCegarLoop]: 667 mSDtfsCounter, 1 mSDsluCounter, 664 mSDsCounter, 0 mSdLazyCounter, 6 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 1331 SdHoareTripleChecker+Invalid, 6 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 6 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:17,677 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 1331 Invalid, 6 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 6 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:17,693 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 441 states. [2024-11-24 01:20:17,748 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 441 to 440. [2024-11-24 01:20:17,751 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 440 states, 340 states have (on average 1.5323529411764707) internal successors, (521), 344 states have internal predecessors, (521), 71 states have call successors, (71), 28 states have call predecessors, (71), 28 states have return successors, (70), 69 states have call predecessors, (70), 70 states have call successors, (70) [2024-11-24 01:20:17,761 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 440 states to 440 states and 662 transitions. [2024-11-24 01:20:17,763 INFO L78 Accepts]: Start accepts. Automaton has 440 states and 662 transitions. Word has length 110 [2024-11-24 01:20:17,765 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:17,765 INFO L471 AbstractCegarLoop]: Abstraction has 440 states and 662 transitions. [2024-11-24 01:20:17,768 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:17,768 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 662 transitions. [2024-11-24 01:20:17,779 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 116 [2024-11-24 01:20:17,782 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:17,783 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:17,796 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-24 01:20:17,990 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-11-24 01:20:17,990 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:17,991 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:17,991 INFO L85 PathProgramCache]: Analyzing trace with hash -1990033895, now seen corresponding path program 1 times [2024-11-24 01:20:17,991 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:17,991 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [473067889] [2024-11-24 01:20:17,992 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:17,992 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:18,067 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:18,535 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-24 01:20:18,536 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:18,537 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [473067889] [2024-11-24 01:20:18,537 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [473067889] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:20:18,537 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2051589254] [2024-11-24 01:20:18,537 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:18,537 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:18,538 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:20:18,540 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:20:18,544 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-24 01:20:19,022 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:19,027 INFO L256 TraceCheckSpWp]: Trace formula consists of 1114 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-24 01:20:19,041 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:20:19,087 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-24 01:20:19,087 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:20:19,088 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2051589254] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:19,088 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:20:19,088 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-24 01:20:19,088 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [806679316] [2024-11-24 01:20:19,088 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:19,089 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:19,089 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:19,090 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:19,093 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:20:19,093 INFO L87 Difference]: Start difference. First operand 440 states and 662 transitions. Second operand has 3 states, 3 states have (on average 23.0) internal successors, (69), 3 states have internal predecessors, (69), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:19,185 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:19,185 INFO L93 Difference]: Finished difference Result 928 states and 1416 transitions. [2024-11-24 01:20:19,186 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:19,186 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 23.0) internal successors, (69), 3 states have internal predecessors, (69), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 115 [2024-11-24 01:20:19,186 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:19,195 INFO L225 Difference]: With dead ends: 928 [2024-11-24 01:20:19,199 INFO L226 Difference]: Without dead ends: 514 [2024-11-24 01:20:19,202 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 119 GetRequests, 115 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:20:19,203 INFO L435 NwaCegarLoop]: 675 mSDtfsCounter, 134 mSDsluCounter, 614 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 152 SdHoareTripleChecker+Valid, 1289 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:19,204 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [152 Valid, 1289 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:19,206 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 514 states. [2024-11-24 01:20:19,268 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 514 to 506. [2024-11-24 01:20:19,271 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 506 states, 392 states have (on average 1.5535714285714286) internal successors, (609), 396 states have internal predecessors, (609), 85 states have call successors, (85), 28 states have call predecessors, (85), 28 states have return successors, (84), 83 states have call predecessors, (84), 84 states have call successors, (84) [2024-11-24 01:20:19,281 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 506 states to 506 states and 778 transitions. [2024-11-24 01:20:19,282 INFO L78 Accepts]: Start accepts. Automaton has 506 states and 778 transitions. Word has length 115 [2024-11-24 01:20:19,282 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:19,283 INFO L471 AbstractCegarLoop]: Abstraction has 506 states and 778 transitions. [2024-11-24 01:20:19,284 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 23.0) internal successors, (69), 3 states have internal predecessors, (69), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:19,284 INFO L276 IsEmpty]: Start isEmpty. Operand 506 states and 778 transitions. [2024-11-24 01:20:19,291 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 117 [2024-11-24 01:20:19,291 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:19,291 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:19,303 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-24 01:20:19,493 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:19,493 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:19,493 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:19,494 INFO L85 PathProgramCache]: Analyzing trace with hash 841564966, now seen corresponding path program 1 times [2024-11-24 01:20:19,494 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:19,494 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [89016151] [2024-11-24 01:20:19,494 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:19,494 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:19,562 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:19,850 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-24 01:20:19,853 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:19,854 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [89016151] [2024-11-24 01:20:19,854 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [89016151] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:20:19,854 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [171487083] [2024-11-24 01:20:19,854 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:19,854 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:19,854 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:20:19,857 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:20:19,862 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-24 01:20:20,324 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:20,329 INFO L256 TraceCheckSpWp]: Trace formula consists of 1119 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-24 01:20:20,339 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:20:20,425 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-24 01:20:20,427 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:20:20,428 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [171487083] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:20,428 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:20:20,429 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8 [2024-11-24 01:20:20,429 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1449750499] [2024-11-24 01:20:20,429 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:20,430 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:20:20,431 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:20,431 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:20:20,431 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-24 01:20:20,432 INFO L87 Difference]: Start difference. First operand 506 states and 778 transitions. Second operand has 5 states, 4 states have (on average 19.75) internal successors, (79), 5 states have internal predecessors, (79), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:20,569 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:20,569 INFO L93 Difference]: Finished difference Result 1003 states and 1546 transitions. [2024-11-24 01:20:20,570 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:20:20,571 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 19.75) internal successors, (79), 5 states have internal predecessors, (79), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) Word has length 116 [2024-11-24 01:20:20,571 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:20,578 INFO L225 Difference]: With dead ends: 1003 [2024-11-24 01:20:20,578 INFO L226 Difference]: Without dead ends: 508 [2024-11-24 01:20:20,580 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 120 GetRequests, 114 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-24 01:20:20,581 INFO L435 NwaCegarLoop]: 653 mSDtfsCounter, 2 mSDsluCounter, 1948 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2601 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:20,582 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2601 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:20,583 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 508 states. [2024-11-24 01:20:20,616 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 508 to 508. [2024-11-24 01:20:20,617 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 508 states, 393 states have (on average 1.5521628498727735) internal successors, (610), 398 states have internal predecessors, (610), 85 states have call successors, (85), 28 states have call predecessors, (85), 29 states have return successors, (86), 83 states have call predecessors, (86), 84 states have call successors, (86) [2024-11-24 01:20:20,628 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 508 states to 508 states and 781 transitions. [2024-11-24 01:20:20,629 INFO L78 Accepts]: Start accepts. Automaton has 508 states and 781 transitions. Word has length 116 [2024-11-24 01:20:20,629 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:20,629 INFO L471 AbstractCegarLoop]: Abstraction has 508 states and 781 transitions. [2024-11-24 01:20:20,629 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 19.75) internal successors, (79), 5 states have internal predecessors, (79), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:20,632 INFO L276 IsEmpty]: Start isEmpty. Operand 508 states and 781 transitions. [2024-11-24 01:20:20,635 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 118 [2024-11-24 01:20:20,635 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:20,635 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:20,652 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-24 01:20:20,843 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:20,843 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:20,844 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:20,844 INFO L85 PathProgramCache]: Analyzing trace with hash 968583721, now seen corresponding path program 1 times [2024-11-24 01:20:20,844 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:20,844 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1787641970] [2024-11-24 01:20:20,844 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:20,844 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:20,891 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:21,166 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 17 trivial. 0 not checked. [2024-11-24 01:20:21,167 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:21,167 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1787641970] [2024-11-24 01:20:21,167 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1787641970] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:20:21,167 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [18991423] [2024-11-24 01:20:21,167 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:21,167 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:21,168 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:20:21,170 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:20:21,175 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-24 01:20:21,594 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:21,600 INFO L256 TraceCheckSpWp]: Trace formula consists of 1120 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-24 01:20:21,605 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:20:21,673 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-24 01:20:21,673 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:20:21,673 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [18991423] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:21,673 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:20:21,674 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11 [2024-11-24 01:20:21,674 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [61418098] [2024-11-24 01:20:21,674 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:21,675 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:20:21,675 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:21,675 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:20:21,676 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-24 01:20:21,676 INFO L87 Difference]: Start difference. First operand 508 states and 781 transitions. Second operand has 5 states, 5 states have (on average 16.2) internal successors, (81), 5 states have internal predecessors, (81), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:21,815 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:21,817 INFO L93 Difference]: Finished difference Result 1005 states and 1551 transitions. [2024-11-24 01:20:21,818 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:20:21,818 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 16.2) internal successors, (81), 5 states have internal predecessors, (81), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 117 [2024-11-24 01:20:21,819 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:21,825 INFO L225 Difference]: With dead ends: 1005 [2024-11-24 01:20:21,826 INFO L226 Difference]: Without dead ends: 510 [2024-11-24 01:20:21,828 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 124 GetRequests, 115 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-24 01:20:21,829 INFO L435 NwaCegarLoop]: 651 mSDtfsCounter, 2 mSDsluCounter, 1936 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2587 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:21,830 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2587 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 01:20:21,832 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 510 states. [2024-11-24 01:20:21,867 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 510 to 510. [2024-11-24 01:20:21,869 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 510 states, 394 states have (on average 1.5507614213197969) internal successors, (611), 400 states have internal predecessors, (611), 85 states have call successors, (85), 28 states have call predecessors, (85), 30 states have return successors, (91), 83 states have call predecessors, (91), 84 states have call successors, (91) [2024-11-24 01:20:21,875 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 510 states to 510 states and 787 transitions. [2024-11-24 01:20:21,876 INFO L78 Accepts]: Start accepts. Automaton has 510 states and 787 transitions. Word has length 117 [2024-11-24 01:20:21,877 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:21,877 INFO L471 AbstractCegarLoop]: Abstraction has 510 states and 787 transitions. [2024-11-24 01:20:21,877 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 16.2) internal successors, (81), 5 states have internal predecessors, (81), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:21,877 INFO L276 IsEmpty]: Start isEmpty. Operand 510 states and 787 transitions. [2024-11-24 01:20:21,881 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 119 [2024-11-24 01:20:21,881 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:21,882 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:21,894 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-11-24 01:20:22,082 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:22,083 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:22,083 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:22,083 INFO L85 PathProgramCache]: Analyzing trace with hash -611487981, now seen corresponding path program 1 times [2024-11-24 01:20:22,083 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:22,083 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1539722199] [2024-11-24 01:20:22,083 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:22,084 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:22,129 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:22,324 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-24 01:20:22,325 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:22,325 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1539722199] [2024-11-24 01:20:22,325 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1539722199] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:22,325 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:22,325 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:20:22,325 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [412796106] [2024-11-24 01:20:22,325 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:22,326 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:20:22,326 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:22,326 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:20:22,327 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:22,327 INFO L87 Difference]: Start difference. First operand 510 states and 787 transitions. Second operand has 5 states, 4 states have (on average 19.25) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:22,402 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:22,403 INFO L93 Difference]: Finished difference Result 997 states and 1542 transitions. [2024-11-24 01:20:22,403 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:20:22,404 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 19.25) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) Word has length 118 [2024-11-24 01:20:22,404 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:22,413 INFO L225 Difference]: With dead ends: 997 [2024-11-24 01:20:22,414 INFO L226 Difference]: Without dead ends: 510 [2024-11-24 01:20:22,417 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:22,418 INFO L435 NwaCegarLoop]: 654 mSDtfsCounter, 2 mSDsluCounter, 1951 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2605 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:22,419 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2605 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:22,420 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 510 states. [2024-11-24 01:20:22,460 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 510 to 510. [2024-11-24 01:20:22,461 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 510 states, 394 states have (on average 1.5507614213197969) internal successors, (611), 400 states have internal predecessors, (611), 85 states have call successors, (85), 28 states have call predecessors, (85), 30 states have return successors, (90), 83 states have call predecessors, (90), 84 states have call successors, (90) [2024-11-24 01:20:22,469 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 510 states to 510 states and 786 transitions. [2024-11-24 01:20:22,471 INFO L78 Accepts]: Start accepts. Automaton has 510 states and 786 transitions. Word has length 118 [2024-11-24 01:20:22,472 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:22,472 INFO L471 AbstractCegarLoop]: Abstraction has 510 states and 786 transitions. [2024-11-24 01:20:22,472 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 19.25) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:22,473 INFO L276 IsEmpty]: Start isEmpty. Operand 510 states and 786 transitions. [2024-11-24 01:20:22,478 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 120 [2024-11-24 01:20:22,478 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:22,478 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:22,478 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-24 01:20:22,479 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:22,479 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:22,479 INFO L85 PathProgramCache]: Analyzing trace with hash 371098744, now seen corresponding path program 2 times [2024-11-24 01:20:22,479 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:22,479 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1706645286] [2024-11-24 01:20:22,480 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-11-24 01:20:22,480 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:22,545 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-11-24 01:20:22,545 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-24 01:20:22,706 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-24 01:20:22,706 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:22,706 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1706645286] [2024-11-24 01:20:22,706 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1706645286] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:22,706 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:22,706 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:20:22,707 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [119899577] [2024-11-24 01:20:22,707 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:22,708 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:20:22,708 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:22,709 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:20:22,709 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:22,710 INFO L87 Difference]: Start difference. First operand 510 states and 786 transitions. Second operand has 5 states, 5 states have (on average 15.4) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:22,794 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:22,794 INFO L93 Difference]: Finished difference Result 995 states and 1537 transitions. [2024-11-24 01:20:22,795 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:20:22,799 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 15.4) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 119 [2024-11-24 01:20:22,799 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:22,804 INFO L225 Difference]: With dead ends: 995 [2024-11-24 01:20:22,804 INFO L226 Difference]: Without dead ends: 510 [2024-11-24 01:20:22,806 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:22,807 INFO L435 NwaCegarLoop]: 652 mSDtfsCounter, 2 mSDsluCounter, 1939 mSDsCounter, 0 mSdLazyCounter, 45 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2591 SdHoareTripleChecker+Invalid, 45 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 45 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:22,807 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2591 Invalid, 45 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 45 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:22,811 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 510 states. [2024-11-24 01:20:22,838 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 510 to 510. [2024-11-24 01:20:22,842 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 510 states, 394 states have (on average 1.5507614213197969) internal successors, (611), 400 states have internal predecessors, (611), 85 states have call successors, (85), 28 states have call predecessors, (85), 30 states have return successors, (89), 83 states have call predecessors, (89), 84 states have call successors, (89) [2024-11-24 01:20:22,850 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 510 states to 510 states and 785 transitions. [2024-11-24 01:20:22,851 INFO L78 Accepts]: Start accepts. Automaton has 510 states and 785 transitions. Word has length 119 [2024-11-24 01:20:22,851 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:22,851 INFO L471 AbstractCegarLoop]: Abstraction has 510 states and 785 transitions. [2024-11-24 01:20:22,851 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 15.4) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:22,852 INFO L276 IsEmpty]: Start isEmpty. Operand 510 states and 785 transitions. [2024-11-24 01:20:22,855 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 121 [2024-11-24 01:20:22,855 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:22,855 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:22,855 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-24 01:20:22,855 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:22,856 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:22,856 INFO L85 PathProgramCache]: Analyzing trace with hash 1035242116, now seen corresponding path program 3 times [2024-11-24 01:20:22,856 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:22,856 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1400661264] [2024-11-24 01:20:22,856 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-24 01:20:22,856 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:22,908 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-11-24 01:20:22,908 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-24 01:20:23,084 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-24 01:20:23,085 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:23,085 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1400661264] [2024-11-24 01:20:23,085 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1400661264] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:23,085 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:23,085 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:20:23,086 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [166816405] [2024-11-24 01:20:23,086 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:23,086 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:20:23,086 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:23,087 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:20:23,087 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:23,087 INFO L87 Difference]: Start difference. First operand 510 states and 785 transitions. Second operand has 5 states, 5 states have (on average 15.6) internal successors, (78), 5 states have internal predecessors, (78), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:23,173 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:23,173 INFO L93 Difference]: Finished difference Result 997 states and 1543 transitions. [2024-11-24 01:20:23,173 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:20:23,174 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 15.6) internal successors, (78), 5 states have internal predecessors, (78), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 120 [2024-11-24 01:20:23,174 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:23,178 INFO L225 Difference]: With dead ends: 997 [2024-11-24 01:20:23,178 INFO L226 Difference]: Without dead ends: 512 [2024-11-24 01:20:23,181 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:23,181 INFO L435 NwaCegarLoop]: 655 mSDtfsCounter, 1 mSDsluCounter, 1947 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2602 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:23,182 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2602 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:23,183 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 512 states. [2024-11-24 01:20:23,203 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 512 to 512. [2024-11-24 01:20:23,204 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 512 states, 395 states have (on average 1.549367088607595) internal successors, (612), 402 states have internal predecessors, (612), 85 states have call successors, (85), 28 states have call predecessors, (85), 31 states have return successors, (94), 83 states have call predecessors, (94), 84 states have call successors, (94) [2024-11-24 01:20:23,209 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 512 states to 512 states and 791 transitions. [2024-11-24 01:20:23,210 INFO L78 Accepts]: Start accepts. Automaton has 512 states and 791 transitions. Word has length 120 [2024-11-24 01:20:23,211 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:23,211 INFO L471 AbstractCegarLoop]: Abstraction has 512 states and 791 transitions. [2024-11-24 01:20:23,211 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 15.6) internal successors, (78), 5 states have internal predecessors, (78), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:23,211 INFO L276 IsEmpty]: Start isEmpty. Operand 512 states and 791 transitions. [2024-11-24 01:20:23,214 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-24 01:20:23,214 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:23,214 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:23,215 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-24 01:20:23,215 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:23,215 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:23,215 INFO L85 PathProgramCache]: Analyzing trace with hash -2048532973, now seen corresponding path program 1 times [2024-11-24 01:20:23,216 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:23,216 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1842417439] [2024-11-24 01:20:23,216 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:23,216 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:23,251 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:23,416 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-24 01:20:23,417 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:23,417 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1842417439] [2024-11-24 01:20:23,417 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1842417439] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:23,417 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:23,417 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:20:23,417 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2115764576] [2024-11-24 01:20:23,417 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:23,418 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:20:23,418 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:23,418 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:20:23,418 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:23,419 INFO L87 Difference]: Start difference. First operand 512 states and 791 transitions. Second operand has 5 states, 4 states have (on average 20.0) internal successors, (80), 5 states have internal predecessors, (80), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:23,490 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:23,490 INFO L93 Difference]: Finished difference Result 1003 states and 1553 transitions. [2024-11-24 01:20:23,490 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:20:23,491 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 20.0) internal successors, (80), 5 states have internal predecessors, (80), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) Word has length 121 [2024-11-24 01:20:23,491 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:23,495 INFO L225 Difference]: With dead ends: 1003 [2024-11-24 01:20:23,495 INFO L226 Difference]: Without dead ends: 514 [2024-11-24 01:20:23,498 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:20:23,498 INFO L435 NwaCegarLoop]: 655 mSDtfsCounter, 1 mSDsluCounter, 1953 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2608 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:23,498 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2608 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:23,500 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 514 states. [2024-11-24 01:20:23,519 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 514 to 514. [2024-11-24 01:20:23,521 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 514 states, 396 states have (on average 1.547979797979798) internal successors, (613), 404 states have internal predecessors, (613), 85 states have call successors, (85), 28 states have call predecessors, (85), 32 states have return successors, (96), 83 states have call predecessors, (96), 84 states have call successors, (96) [2024-11-24 01:20:23,526 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 514 states to 514 states and 794 transitions. [2024-11-24 01:20:23,527 INFO L78 Accepts]: Start accepts. Automaton has 514 states and 794 transitions. Word has length 121 [2024-11-24 01:20:23,527 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:23,528 INFO L471 AbstractCegarLoop]: Abstraction has 514 states and 794 transitions. [2024-11-24 01:20:23,528 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 20.0) internal successors, (80), 5 states have internal predecessors, (80), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-24 01:20:23,528 INFO L276 IsEmpty]: Start isEmpty. Operand 514 states and 794 transitions. [2024-11-24 01:20:23,531 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 123 [2024-11-24 01:20:23,531 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:23,531 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:23,532 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-24 01:20:23,532 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:23,532 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:23,532 INFO L85 PathProgramCache]: Analyzing trace with hash 1536483241, now seen corresponding path program 1 times [2024-11-24 01:20:23,533 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:23,533 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1971783564] [2024-11-24 01:20:23,533 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:23,533 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:23,569 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:23,701 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:23,702 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:23,702 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1971783564] [2024-11-24 01:20:23,702 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1971783564] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:20:23,702 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [522463179] [2024-11-24 01:20:23,702 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:23,702 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:23,702 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:20:23,704 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:20:23,708 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-24 01:20:24,126 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:24,133 INFO L256 TraceCheckSpWp]: Trace formula consists of 1125 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-24 01:20:24,139 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:20:24,182 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:24,182 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-24 01:20:24,328 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:24,331 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [522463179] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-24 01:20:24,331 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-24 01:20:24,331 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2024-11-24 01:20:24,331 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [189635952] [2024-11-24 01:20:24,331 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-24 01:20:24,332 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-24 01:20:24,332 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:24,333 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-24 01:20:24,333 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-24 01:20:24,334 INFO L87 Difference]: Start difference. First operand 514 states and 794 transitions. Second operand has 7 states, 7 states have (on average 15.857142857142858) internal successors, (111), 7 states have internal predecessors, (111), 2 states have call successors, (25), 2 states have call predecessors, (25), 2 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) [2024-11-24 01:20:24,686 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:24,686 INFO L93 Difference]: Finished difference Result 1198 states and 1912 transitions. [2024-11-24 01:20:24,687 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-24 01:20:24,687 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 15.857142857142858) internal successors, (111), 7 states have internal predecessors, (111), 2 states have call successors, (25), 2 states have call predecessors, (25), 2 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) Word has length 122 [2024-11-24 01:20:24,687 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:24,696 INFO L225 Difference]: With dead ends: 1198 [2024-11-24 01:20:24,696 INFO L226 Difference]: Without dead ends: 950 [2024-11-24 01:20:24,698 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 246 GetRequests, 241 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-24 01:20:24,699 INFO L435 NwaCegarLoop]: 693 mSDtfsCounter, 457 mSDsluCounter, 1656 mSDsCounter, 0 mSdLazyCounter, 75 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 511 SdHoareTripleChecker+Valid, 2349 SdHoareTripleChecker+Invalid, 85 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 75 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:24,699 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [511 Valid, 2349 Invalid, 85 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 75 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-24 01:20:24,701 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 950 states. [2024-11-24 01:20:24,748 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 950 to 926. [2024-11-24 01:20:24,751 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 926 states, 729 states have (on average 1.6186556927297668) internal successors, (1180), 737 states have internal predecessors, (1180), 164 states have call successors, (164), 28 states have call predecessors, (164), 32 states have return successors, (185), 162 states have call predecessors, (185), 163 states have call successors, (185) [2024-11-24 01:20:24,761 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 926 states to 926 states and 1529 transitions. [2024-11-24 01:20:24,763 INFO L78 Accepts]: Start accepts. Automaton has 926 states and 1529 transitions. Word has length 122 [2024-11-24 01:20:24,763 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:24,763 INFO L471 AbstractCegarLoop]: Abstraction has 926 states and 1529 transitions. [2024-11-24 01:20:24,764 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 15.857142857142858) internal successors, (111), 7 states have internal predecessors, (111), 2 states have call successors, (25), 2 states have call predecessors, (25), 2 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) [2024-11-24 01:20:24,764 INFO L276 IsEmpty]: Start isEmpty. Operand 926 states and 1529 transitions. [2024-11-24 01:20:24,771 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-24 01:20:24,771 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:24,772 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:24,786 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-24 01:20:24,975 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_7caea189-f90c-4e64-9503-774a7d2c3fb3/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:20:24,976 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:24,976 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:24,977 INFO L85 PathProgramCache]: Analyzing trace with hash -304663615, now seen corresponding path program 1 times [2024-11-24 01:20:24,977 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:24,977 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1919016787] [2024-11-24 01:20:24,977 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:24,977 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:25,022 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:25,083 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:25,084 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:25,084 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1919016787] [2024-11-24 01:20:25,084 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1919016787] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:25,084 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:25,084 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:25,084 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [948663142] [2024-11-24 01:20:25,084 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:25,085 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:25,085 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:25,086 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:25,086 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:25,086 INFO L87 Difference]: Start difference. First operand 926 states and 1529 transitions. Second operand has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:25,173 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:25,173 INFO L93 Difference]: Finished difference Result 2202 states and 3690 transitions. [2024-11-24 01:20:25,173 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:25,174 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 129 [2024-11-24 01:20:25,175 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:25,187 INFO L225 Difference]: With dead ends: 2202 [2024-11-24 01:20:25,187 INFO L226 Difference]: Without dead ends: 1342 [2024-11-24 01:20:25,194 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:25,196 INFO L435 NwaCegarLoop]: 665 mSDtfsCounter, 132 mSDsluCounter, 656 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 150 SdHoareTripleChecker+Valid, 1321 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:25,196 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [150 Valid, 1321 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:25,199 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1342 states. [2024-11-24 01:20:25,277 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1342 to 1334. [2024-11-24 01:20:25,280 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1334 states, 1058 states have (on average 1.6379962192816635) internal successors, (1733), 1066 states have internal predecessors, (1733), 243 states have call successors, (243), 28 states have call predecessors, (243), 32 states have return successors, (274), 241 states have call predecessors, (274), 242 states have call successors, (274) [2024-11-24 01:20:25,294 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1334 states to 1334 states and 2250 transitions. [2024-11-24 01:20:25,295 INFO L78 Accepts]: Start accepts. Automaton has 1334 states and 2250 transitions. Word has length 129 [2024-11-24 01:20:25,296 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:25,296 INFO L471 AbstractCegarLoop]: Abstraction has 1334 states and 2250 transitions. [2024-11-24 01:20:25,296 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:25,296 INFO L276 IsEmpty]: Start isEmpty. Operand 1334 states and 2250 transitions. [2024-11-24 01:20:25,307 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 131 [2024-11-24 01:20:25,308 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:25,308 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:25,308 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-24 01:20:25,309 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:25,309 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:25,310 INFO L85 PathProgramCache]: Analyzing trace with hash -809510575, now seen corresponding path program 1 times [2024-11-24 01:20:25,310 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:25,310 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [790680208] [2024-11-24 01:20:25,310 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:25,310 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:25,355 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:25,413 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:25,414 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:25,414 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [790680208] [2024-11-24 01:20:25,414 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [790680208] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:25,414 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:25,414 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:25,416 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1877860952] [2024-11-24 01:20:25,416 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:25,416 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:25,417 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:25,417 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:25,417 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:25,418 INFO L87 Difference]: Start difference. First operand 1334 states and 2250 transitions. Second operand has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:25,540 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:25,541 INFO L93 Difference]: Finished difference Result 3199 states and 5435 transitions. [2024-11-24 01:20:25,541 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:25,542 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 130 [2024-11-24 01:20:25,542 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:25,559 INFO L225 Difference]: With dead ends: 3199 [2024-11-24 01:20:25,559 INFO L226 Difference]: Without dead ends: 1982 [2024-11-24 01:20:25,567 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:25,568 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 130 mSDsluCounter, 654 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 148 SdHoareTripleChecker+Valid, 1314 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:25,568 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [148 Valid, 1314 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:25,573 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1982 states. [2024-11-24 01:20:25,709 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1982 to 1974. [2024-11-24 01:20:25,714 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1974 states, 1579 states have (on average 1.6516782773907537) internal successors, (2608), 1587 states have internal predecessors, (2608), 362 states have call successors, (362), 28 states have call predecessors, (362), 32 states have return successors, (393), 360 states have call predecessors, (393), 361 states have call successors, (393) [2024-11-24 01:20:25,738 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1974 states to 1974 states and 3363 transitions. [2024-11-24 01:20:25,740 INFO L78 Accepts]: Start accepts. Automaton has 1974 states and 3363 transitions. Word has length 130 [2024-11-24 01:20:25,741 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:25,741 INFO L471 AbstractCegarLoop]: Abstraction has 1974 states and 3363 transitions. [2024-11-24 01:20:25,741 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:25,741 INFO L276 IsEmpty]: Start isEmpty. Operand 1974 states and 3363 transitions. [2024-11-24 01:20:25,756 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 132 [2024-11-24 01:20:25,757 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:25,757 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:25,758 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-24 01:20:25,758 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:25,758 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:25,758 INFO L85 PathProgramCache]: Analyzing trace with hash 1693947679, now seen corresponding path program 1 times [2024-11-24 01:20:25,758 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:25,759 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1790880820] [2024-11-24 01:20:25,759 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:25,759 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:25,835 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:25,908 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:25,908 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:25,909 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1790880820] [2024-11-24 01:20:25,909 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1790880820] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:25,909 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:25,909 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:25,911 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1844487301] [2024-11-24 01:20:25,911 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:25,912 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:25,912 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:25,912 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:25,912 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:25,913 INFO L87 Difference]: Start difference. First operand 1974 states and 3363 transitions. Second operand has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:26,121 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:26,122 INFO L93 Difference]: Finished difference Result 4701 states and 8075 transitions. [2024-11-24 01:20:26,122 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:26,122 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 131 [2024-11-24 01:20:26,123 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:26,151 INFO L225 Difference]: With dead ends: 4701 [2024-11-24 01:20:26,151 INFO L226 Difference]: Without dead ends: 2965 [2024-11-24 01:20:26,161 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:26,162 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 128 mSDsluCounter, 651 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 146 SdHoareTripleChecker+Valid, 1311 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:26,163 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [146 Valid, 1311 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:26,168 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2965 states. [2024-11-24 01:20:26,373 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2965 to 2957. [2024-11-24 01:20:26,381 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2957 states, 2400 states have (on average 1.6625) internal successors, (3990), 2408 states have internal predecessors, (3990), 524 states have call successors, (524), 28 states have call predecessors, (524), 32 states have return successors, (571), 522 states have call predecessors, (571), 523 states have call successors, (571) [2024-11-24 01:20:26,407 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2957 states to 2957 states and 5085 transitions. [2024-11-24 01:20:26,410 INFO L78 Accepts]: Start accepts. Automaton has 2957 states and 5085 transitions. Word has length 131 [2024-11-24 01:20:26,411 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:26,411 INFO L471 AbstractCegarLoop]: Abstraction has 2957 states and 5085 transitions. [2024-11-24 01:20:26,411 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:26,411 INFO L276 IsEmpty]: Start isEmpty. Operand 2957 states and 5085 transitions. [2024-11-24 01:20:26,435 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 133 [2024-11-24 01:20:26,435 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:26,435 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:26,435 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-24 01:20:26,435 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:26,436 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:26,436 INFO L85 PathProgramCache]: Analyzing trace with hash 1747371536, now seen corresponding path program 1 times [2024-11-24 01:20:26,436 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:26,436 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1015464940] [2024-11-24 01:20:26,436 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:26,437 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:26,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:26,560 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:26,560 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:26,560 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1015464940] [2024-11-24 01:20:26,561 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1015464940] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:26,561 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:26,561 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:26,561 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [681782891] [2024-11-24 01:20:26,561 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:26,561 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:26,561 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:26,562 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:26,562 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:26,562 INFO L87 Difference]: Start difference. First operand 2957 states and 5085 transitions. Second operand has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:26,803 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:26,804 INFO L93 Difference]: Finished difference Result 7079 states and 12261 transitions. [2024-11-24 01:20:26,804 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:26,805 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 132 [2024-11-24 01:20:26,805 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:26,843 INFO L225 Difference]: With dead ends: 7079 [2024-11-24 01:20:26,844 INFO L226 Difference]: Without dead ends: 4557 [2024-11-24 01:20:26,856 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:26,857 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 126 mSDsluCounter, 651 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1311 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:26,858 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1311 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:26,864 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4557 states. [2024-11-24 01:20:27,267 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4557 to 4549. [2024-11-24 01:20:27,280 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4549 states, 3747 states have (on average 1.6701361088871096) internal successors, (6258), 3755 states have internal predecessors, (6258), 769 states have call successors, (769), 28 states have call predecessors, (769), 32 states have return successors, (842), 767 states have call predecessors, (842), 768 states have call successors, (842) [2024-11-24 01:20:27,317 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4549 states to 4549 states and 7869 transitions. [2024-11-24 01:20:27,321 INFO L78 Accepts]: Start accepts. Automaton has 4549 states and 7869 transitions. Word has length 132 [2024-11-24 01:20:27,323 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:27,323 INFO L471 AbstractCegarLoop]: Abstraction has 4549 states and 7869 transitions. [2024-11-24 01:20:27,323 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:27,324 INFO L276 IsEmpty]: Start isEmpty. Operand 4549 states and 7869 transitions. [2024-11-24 01:20:27,352 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 134 [2024-11-24 01:20:27,353 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:27,353 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:27,353 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-11-24 01:20:27,353 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:27,354 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:27,354 INFO L85 PathProgramCache]: Analyzing trace with hash 39249571, now seen corresponding path program 1 times [2024-11-24 01:20:27,354 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:27,354 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [940746851] [2024-11-24 01:20:27,354 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:27,355 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:27,398 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:27,449 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:27,449 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:27,449 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [940746851] [2024-11-24 01:20:27,450 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [940746851] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:27,450 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:27,450 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:27,450 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2004361658] [2024-11-24 01:20:27,450 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:27,451 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:27,451 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:27,451 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:27,452 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:27,452 INFO L87 Difference]: Start difference. First operand 4549 states and 7869 transitions. Second operand has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:27,820 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:27,820 INFO L93 Difference]: Finished difference Result 11048 states and 19244 transitions. [2024-11-24 01:20:27,820 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:27,821 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 133 [2024-11-24 01:20:27,821 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:27,891 INFO L225 Difference]: With dead ends: 11048 [2024-11-24 01:20:27,891 INFO L226 Difference]: Without dead ends: 7235 [2024-11-24 01:20:27,909 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:27,910 INFO L435 NwaCegarLoop]: 671 mSDtfsCounter, 124 mSDsluCounter, 650 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1321 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:27,910 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1321 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:27,919 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 7235 states. [2024-11-24 01:20:28,456 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 7235 to 7227. [2024-11-24 01:20:28,472 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 7227 states, 5932 states have (on average 1.6702629804450437) internal successors, (9908), 5940 states have internal predecessors, (9908), 1262 states have call successors, (1262), 28 states have call predecessors, (1262), 32 states have return successors, (1379), 1260 states have call predecessors, (1379), 1261 states have call successors, (1379) [2024-11-24 01:20:28,518 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 7227 states to 7227 states and 12549 transitions. [2024-11-24 01:20:28,522 INFO L78 Accepts]: Start accepts. Automaton has 7227 states and 12549 transitions. Word has length 133 [2024-11-24 01:20:28,523 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:28,523 INFO L471 AbstractCegarLoop]: Abstraction has 7227 states and 12549 transitions. [2024-11-24 01:20:28,523 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:28,523 INFO L276 IsEmpty]: Start isEmpty. Operand 7227 states and 12549 transitions. [2024-11-24 01:20:28,564 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 135 [2024-11-24 01:20:28,565 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:28,565 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:28,565 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2024-11-24 01:20:28,565 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:28,566 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:28,566 INFO L85 PathProgramCache]: Analyzing trace with hash 181119628, now seen corresponding path program 1 times [2024-11-24 01:20:28,566 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:28,566 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [182432768] [2024-11-24 01:20:28,566 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:28,566 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:28,605 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:28,662 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:28,663 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:28,663 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [182432768] [2024-11-24 01:20:28,663 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [182432768] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:28,663 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:28,663 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:28,663 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2043765139] [2024-11-24 01:20:28,664 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:28,665 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:28,666 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:28,666 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:28,667 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:28,667 INFO L87 Difference]: Start difference. First operand 7227 states and 12549 transitions. Second operand has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:29,221 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:29,221 INFO L93 Difference]: Finished difference Result 18250 states and 31884 transitions. [2024-11-24 01:20:29,221 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:29,222 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 134 [2024-11-24 01:20:29,222 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:29,321 INFO L225 Difference]: With dead ends: 18250 [2024-11-24 01:20:29,321 INFO L226 Difference]: Without dead ends: 12120 [2024-11-24 01:20:29,351 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:29,351 INFO L435 NwaCegarLoop]: 667 mSDtfsCounter, 122 mSDsluCounter, 655 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1322 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:29,351 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1322 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:29,367 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 12120 states. [2024-11-24 01:20:30,413 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 12120 to 12112. [2024-11-24 01:20:30,438 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12112 states, 9995 states have (on average 1.6712356178089045) internal successors, (16704), 10003 states have internal predecessors, (16704), 2084 states have call successors, (2084), 28 states have call predecessors, (2084), 32 states have return successors, (2279), 2082 states have call predecessors, (2279), 2083 states have call successors, (2279) [2024-11-24 01:20:30,538 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12112 states to 12112 states and 21067 transitions. [2024-11-24 01:20:30,546 INFO L78 Accepts]: Start accepts. Automaton has 12112 states and 21067 transitions. Word has length 134 [2024-11-24 01:20:30,546 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:30,546 INFO L471 AbstractCegarLoop]: Abstraction has 12112 states and 21067 transitions. [2024-11-24 01:20:30,548 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:30,548 INFO L276 IsEmpty]: Start isEmpty. Operand 12112 states and 21067 transitions. [2024-11-24 01:20:30,615 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 136 [2024-11-24 01:20:30,616 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:30,616 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:30,616 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2024-11-24 01:20:30,616 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:30,617 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:30,617 INFO L85 PathProgramCache]: Analyzing trace with hash -1127972811, now seen corresponding path program 1 times [2024-11-24 01:20:30,617 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:30,617 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1862980933] [2024-11-24 01:20:30,618 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:30,618 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:30,667 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:30,740 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:30,741 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:30,741 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1862980933] [2024-11-24 01:20:30,741 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1862980933] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:30,742 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:30,742 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:30,742 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1868151560] [2024-11-24 01:20:30,742 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:30,743 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:30,743 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:30,744 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:30,744 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:30,746 INFO L87 Difference]: Start difference. First operand 12112 states and 21067 transitions. Second operand has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:31,585 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:31,585 INFO L93 Difference]: Finished difference Result 28970 states and 50330 transitions. [2024-11-24 01:20:31,585 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:31,586 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 135 [2024-11-24 01:20:31,586 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:31,710 INFO L225 Difference]: With dead ends: 28970 [2024-11-24 01:20:31,710 INFO L226 Difference]: Without dead ends: 18907 [2024-11-24 01:20:31,760 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:31,761 INFO L435 NwaCegarLoop]: 662 mSDtfsCounter, 120 mSDsluCounter, 626 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1288 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:31,762 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1288 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:31,789 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18907 states. [2024-11-24 01:20:32,904 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18907 to 18899. [2024-11-24 01:20:32,939 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18899 states, 15579 states have (on average 1.648372809551319) internal successors, (25680), 15587 states have internal predecessors, (25680), 3287 states have call successors, (3287), 28 states have call predecessors, (3287), 32 states have return successors, (3626), 3285 states have call predecessors, (3626), 3286 states have call successors, (3626) [2024-11-24 01:20:33,043 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18899 states to 18899 states and 32593 transitions. [2024-11-24 01:20:33,053 INFO L78 Accepts]: Start accepts. Automaton has 18899 states and 32593 transitions. Word has length 135 [2024-11-24 01:20:33,054 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:33,054 INFO L471 AbstractCegarLoop]: Abstraction has 18899 states and 32593 transitions. [2024-11-24 01:20:33,054 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:33,054 INFO L276 IsEmpty]: Start isEmpty. Operand 18899 states and 32593 transitions. [2024-11-24 01:20:33,108 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2024-11-24 01:20:33,108 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:33,109 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:33,109 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2024-11-24 01:20:33,109 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:33,111 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:33,112 INFO L85 PathProgramCache]: Analyzing trace with hash 1856825899, now seen corresponding path program 1 times [2024-11-24 01:20:33,112 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:33,112 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2016721679] [2024-11-24 01:20:33,112 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:33,112 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:33,143 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:33,206 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:33,207 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:33,207 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2016721679] [2024-11-24 01:20:33,207 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2016721679] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:33,207 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:33,207 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:33,207 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1780971074] [2024-11-24 01:20:33,207 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:33,207 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:33,208 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:33,208 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:33,208 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:33,208 INFO L87 Difference]: Start difference. First operand 18899 states and 32593 transitions. Second operand has 3 states, 3 states have (on average 30.666666666666668) internal successors, (92), 3 states have internal predecessors, (92), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:35,157 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:35,157 INFO L93 Difference]: Finished difference Result 49962 states and 86470 transitions. [2024-11-24 01:20:35,158 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:35,158 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.666666666666668) internal successors, (92), 3 states have internal predecessors, (92), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 136 [2024-11-24 01:20:35,159 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:35,422 INFO L225 Difference]: With dead ends: 49962 [2024-11-24 01:20:35,422 INFO L226 Difference]: Without dead ends: 33725 [2024-11-24 01:20:35,514 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:35,516 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 118 mSDsluCounter, 654 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1314 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:35,516 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1314 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 01:20:35,560 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 33725 states. [2024-11-24 01:20:37,464 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 33725 to 33717. [2024-11-24 01:20:37,518 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 33717 states, 27947 states have (on average 1.6452570937846638) internal successors, (45980), 27955 states have internal predecessors, (45980), 5737 states have call successors, (5737), 28 states have call predecessors, (5737), 32 states have return successors, (6350), 5735 states have call predecessors, (6350), 5736 states have call successors, (6350) [2024-11-24 01:20:37,660 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 33717 states to 33717 states and 58067 transitions. [2024-11-24 01:20:37,675 INFO L78 Accepts]: Start accepts. Automaton has 33717 states and 58067 transitions. Word has length 136 [2024-11-24 01:20:37,675 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:37,675 INFO L471 AbstractCegarLoop]: Abstraction has 33717 states and 58067 transitions. [2024-11-24 01:20:37,676 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.666666666666668) internal successors, (92), 3 states have internal predecessors, (92), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:37,676 INFO L276 IsEmpty]: Start isEmpty. Operand 33717 states and 58067 transitions. [2024-11-24 01:20:37,736 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 138 [2024-11-24 01:20:37,736 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:37,737 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:37,738 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2024-11-24 01:20:37,738 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:37,738 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:37,738 INFO L85 PathProgramCache]: Analyzing trace with hash -1314408165, now seen corresponding path program 1 times [2024-11-24 01:20:37,738 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:37,739 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1323464162] [2024-11-24 01:20:37,739 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:37,739 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:37,774 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:37,825 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:37,825 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:37,825 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1323464162] [2024-11-24 01:20:37,825 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1323464162] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:37,825 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:37,826 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:37,826 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1541820135] [2024-11-24 01:20:37,826 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:37,827 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:37,827 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:37,828 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:37,828 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:37,828 INFO L87 Difference]: Start difference. First operand 33717 states and 58067 transitions. Second operand has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:40,036 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:40,036 INFO L93 Difference]: Finished difference Result 91999 states and 158897 transitions. [2024-11-24 01:20:40,039 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:40,040 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 137 [2024-11-24 01:20:40,040 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:40,473 INFO L225 Difference]: With dead ends: 91999 [2024-11-24 01:20:40,473 INFO L226 Difference]: Without dead ends: 61823 [2024-11-24 01:20:40,598 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:40,599 INFO L435 NwaCegarLoop]: 669 mSDtfsCounter, 116 mSDsluCounter, 655 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1324 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:40,599 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1324 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:40,671 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61823 states. [2024-11-24 01:20:43,909 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61823 to 61815. [2024-11-24 01:20:44,011 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61815 states, 51532 states have (on average 1.6409609562989986) internal successors, (84562), 51540 states have internal predecessors, (84562), 10250 states have call successors, (10250), 28 states have call predecessors, (10250), 32 states have return successors, (11395), 10248 states have call predecessors, (11395), 10249 states have call successors, (11395) [2024-11-24 01:20:44,253 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61815 states to 61815 states and 106207 transitions. [2024-11-24 01:20:44,284 INFO L78 Accepts]: Start accepts. Automaton has 61815 states and 106207 transitions. Word has length 137 [2024-11-24 01:20:44,284 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:44,284 INFO L471 AbstractCegarLoop]: Abstraction has 61815 states and 106207 transitions. [2024-11-24 01:20:44,285 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:44,285 INFO L276 IsEmpty]: Start isEmpty. Operand 61815 states and 106207 transitions. [2024-11-24 01:20:44,351 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 139 [2024-11-24 01:20:44,351 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:44,352 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:44,352 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2024-11-24 01:20:44,352 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:44,353 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:44,353 INFO L85 PathProgramCache]: Analyzing trace with hash -893680181, now seen corresponding path program 1 times [2024-11-24 01:20:44,353 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:44,354 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [77164294] [2024-11-24 01:20:44,354 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:44,354 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:44,395 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:44,731 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:44,731 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:44,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [77164294] [2024-11-24 01:20:44,735 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [77164294] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:44,735 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:44,735 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:20:44,735 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2104309557] [2024-11-24 01:20:44,735 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:44,735 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:20:44,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:44,736 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:20:44,736 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:44,736 INFO L87 Difference]: Start difference. First operand 61815 states and 106207 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:48,524 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:20:48,524 INFO L93 Difference]: Finished difference Result 115856 states and 199443 transitions. [2024-11-24 01:20:48,525 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:20:48,525 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 138 [2024-11-24 01:20:48,525 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:20:49,136 INFO L225 Difference]: With dead ends: 115856 [2024-11-24 01:20:49,136 INFO L226 Difference]: Without dead ends: 115608 [2024-11-24 01:20:49,186 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:20:49,187 INFO L435 NwaCegarLoop]: 669 mSDtfsCounter, 111 mSDsluCounter, 659 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1328 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:20:49,187 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1328 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:20:49,268 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 115608 states. [2024-11-24 01:20:53,555 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 115608 to 115600. [2024-11-24 01:20:53,650 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 115600 states, 96949 states have (on average 1.6355506503419324) internal successors, (158565), 96957 states have internal predecessors, (158565), 18618 states have call successors, (18618), 28 states have call predecessors, (18618), 32 states have return successors, (20809), 18616 states have call predecessors, (20809), 18617 states have call successors, (20809) [2024-11-24 01:20:54,110 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 115600 states to 115600 states and 197992 transitions. [2024-11-24 01:20:54,146 INFO L78 Accepts]: Start accepts. Automaton has 115600 states and 197992 transitions. Word has length 138 [2024-11-24 01:20:54,146 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:20:54,146 INFO L471 AbstractCegarLoop]: Abstraction has 115600 states and 197992 transitions. [2024-11-24 01:20:54,146 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-24 01:20:54,147 INFO L276 IsEmpty]: Start isEmpty. Operand 115600 states and 197992 transitions. [2024-11-24 01:20:54,243 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 140 [2024-11-24 01:20:54,244 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:20:54,244 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:20:54,244 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2024-11-24 01:20:54,244 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:20:54,245 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:20:54,245 INFO L85 PathProgramCache]: Analyzing trace with hash -429921028, now seen corresponding path program 1 times [2024-11-24 01:20:54,245 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:20:54,245 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1397905503] [2024-11-24 01:20:54,245 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:20:54,246 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:20:54,293 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:20:54,808 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:20:54,809 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:20:54,809 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1397905503] [2024-11-24 01:20:54,809 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1397905503] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:20:54,809 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:20:54,809 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2024-11-24 01:20:54,810 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1390788616] [2024-11-24 01:20:54,810 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:20:54,810 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-11-24 01:20:54,812 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:20:54,813 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-11-24 01:20:54,813 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=157, Unknown=0, NotChecked=0, Total=182 [2024-11-24 01:20:54,813 INFO L87 Difference]: Start difference. First operand 115600 states and 197992 transitions. Second operand has 14 states, 12 states have (on average 7.916666666666667) internal successors, (95), 12 states have internal predecessors, (95), 6 states have call successors, (17), 3 states have call predecessors, (17), 4 states have return successors, (14), 6 states have call predecessors, (14), 6 states have call successors, (14) [2024-11-24 01:21:04,801 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:21:04,802 INFO L93 Difference]: Finished difference Result 230618 states and 400377 transitions. [2024-11-24 01:21:04,802 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-11-24 01:21:04,802 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 7.916666666666667) internal successors, (95), 12 states have internal predecessors, (95), 6 states have call successors, (17), 3 states have call predecessors, (17), 4 states have return successors, (14), 6 states have call predecessors, (14), 6 states have call successors, (14) Word has length 139 [2024-11-24 01:21:04,803 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:21:06,300 INFO L225 Difference]: With dead ends: 230618 [2024-11-24 01:21:06,301 INFO L226 Difference]: Without dead ends: 230376 [2024-11-24 01:21:06,406 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 36 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 30 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 125 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=159, Invalid=833, Unknown=0, NotChecked=0, Total=992 [2024-11-24 01:21:06,410 INFO L435 NwaCegarLoop]: 755 mSDtfsCounter, 2001 mSDsluCounter, 7992 mSDsCounter, 0 mSdLazyCounter, 1749 mSolverCounterSat, 683 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2001 SdHoareTripleChecker+Valid, 8747 SdHoareTripleChecker+Invalid, 2432 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 683 IncrementalHoareTripleChecker+Valid, 1749 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.6s IncrementalHoareTripleChecker+Time [2024-11-24 01:21:06,411 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2001 Valid, 8747 Invalid, 2432 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [683 Valid, 1749 Invalid, 0 Unknown, 0 Unchecked, 2.6s Time] [2024-11-24 01:21:06,570 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 230376 states. [2024-11-24 01:21:14,639 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 230376 to 230302. [2024-11-24 01:21:14,881 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 230302 states, 193192 states have (on average 1.635916601101495) internal successors, (316046), 193101 states have internal predecessors, (316046), 37026 states have call successors, (37026), 75 states have call predecessors, (37026), 83 states have return successors, (44696), 37133 states have call predecessors, (44696), 37023 states have call successors, (44696) [2024-11-24 01:21:15,811 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 230302 states to 230302 states and 397768 transitions. [2024-11-24 01:21:15,877 INFO L78 Accepts]: Start accepts. Automaton has 230302 states and 397768 transitions. Word has length 139 [2024-11-24 01:21:15,878 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:21:15,878 INFO L471 AbstractCegarLoop]: Abstraction has 230302 states and 397768 transitions. [2024-11-24 01:21:15,879 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 12 states have (on average 7.916666666666667) internal successors, (95), 12 states have internal predecessors, (95), 6 states have call successors, (17), 3 states have call predecessors, (17), 4 states have return successors, (14), 6 states have call predecessors, (14), 6 states have call successors, (14) [2024-11-24 01:21:15,879 INFO L276 IsEmpty]: Start isEmpty. Operand 230302 states and 397768 transitions. [2024-11-24 01:21:16,090 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 141 [2024-11-24 01:21:16,090 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:21:16,090 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:21:16,090 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2024-11-24 01:21:16,091 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:21:16,095 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:21:16,095 INFO L85 PathProgramCache]: Analyzing trace with hash 65765109, now seen corresponding path program 1 times [2024-11-24 01:21:16,095 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:21:16,095 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [45910443] [2024-11-24 01:21:16,095 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:21:16,096 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms