./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/email_spec6_product29.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 6497de01 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/email_spec6_product29.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 3d972cfbd720871733ec5c68c499418657e5e73014fcfa137b0a1c37f3300ef7 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-6497de0 [2024-11-24 01:47:53,832 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-24 01:47:53,946 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-24 01:47:53,956 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-24 01:47:53,957 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-24 01:47:54,012 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-24 01:47:54,013 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-24 01:47:54,013 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-24 01:47:54,013 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-24 01:47:54,014 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-24 01:47:54,014 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-24 01:47:54,014 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-24 01:47:54,014 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-24 01:47:54,014 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-24 01:47:54,017 INFO L153 SettingsManager]: * Use SBE=true [2024-11-24 01:47:54,018 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-24 01:47:54,018 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-24 01:47:54,018 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-24 01:47:54,018 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-24 01:47:54,019 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-24 01:47:54,019 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-24 01:47:54,019 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-24 01:47:54,019 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-24 01:47:54,019 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-24 01:47:54,020 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-24 01:47:54,020 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-24 01:47:54,020 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2024-11-24 01:47:54,020 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-24 01:47:54,020 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-24 01:47:54,020 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-24 01:47:54,021 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-24 01:47:54,021 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-24 01:47:54,021 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 01:47:54,021 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-24 01:47:54,022 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-24 01:47:54,022 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-24 01:47:54,023 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-24 01:47:54,023 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 01:47:54,023 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-24 01:47:54,023 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-24 01:47:54,023 INFO L153 SettingsManager]: * Compute procedure contracts=false [2024-11-24 01:47:54,023 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-24 01:47:54,024 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 3d972cfbd720871733ec5c68c499418657e5e73014fcfa137b0a1c37f3300ef7 [2024-11-24 01:47:54,424 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-24 01:47:54,434 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-24 01:47:54,437 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-24 01:47:54,438 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-24 01:47:54,439 INFO L274 PluginConnector]: CDTParser initialized [2024-11-24 01:47:54,442 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/../../sv-benchmarks/c/product-lines/email_spec6_product29.cil.c [2024-11-24 01:47:57,754 INFO L533 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/data/d4996f029/50b50d6a32e3488da9fd0cbaff004bab/FLAG91826e507 [2024-11-24 01:47:58,171 INFO L384 CDTParser]: Found 1 translation units. [2024-11-24 01:47:58,172 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/sv-benchmarks/c/product-lines/email_spec6_product29.cil.c [2024-11-24 01:47:58,222 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/data/d4996f029/50b50d6a32e3488da9fd0cbaff004bab/FLAG91826e507 [2024-11-24 01:47:58,239 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/data/d4996f029/50b50d6a32e3488da9fd0cbaff004bab [2024-11-24 01:47:58,241 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-24 01:47:58,244 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-24 01:47:58,246 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-24 01:47:58,246 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-24 01:47:58,254 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-24 01:47:58,255 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 24.11 01:47:58" (1/1) ... [2024-11-24 01:47:58,258 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@30f8f9c6 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:58, skipping insertion in model container [2024-11-24 01:47:58,259 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 24.11 01:47:58" (1/1) ... [2024-11-24 01:47:58,334 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-24 01:47:58,921 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/sv-benchmarks/c/product-lines/email_spec6_product29.cil.c[42927,42940] [2024-11-24 01:47:59,134 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-24 01:47:59,152 INFO L200 MainTranslator]: Completed pre-run [2024-11-24 01:47:59,161 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [48] [2024-11-24 01:47:59,163 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [368] [2024-11-24 01:47:59,163 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptDecrypt_spec.i","") [734] [2024-11-24 01:47:59,163 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [785] [2024-11-24 01:47:59,163 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [1854] [2024-11-24 01:47:59,164 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [1863] [2024-11-24 01:47:59,164 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [2079] [2024-11-24 01:47:59,164 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [2096] [2024-11-24 01:47:59,164 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [2131] [2024-11-24 01:47:59,165 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2277] [2024-11-24 01:47:59,165 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [2679] [2024-11-24 01:47:59,288 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/sv-benchmarks/c/product-lines/email_spec6_product29.cil.c[42927,42940] [2024-11-24 01:47:59,340 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-24 01:47:59,382 INFO L204 MainTranslator]: Completed translation [2024-11-24 01:47:59,383 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59 WrapperNode [2024-11-24 01:47:59,383 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-24 01:47:59,384 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-24 01:47:59,384 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-24 01:47:59,385 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-24 01:47:59,399 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,444 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,538 INFO L138 Inliner]: procedures = 132, calls = 216, calls flagged for inlining = 56, calls inlined = 48, statements flattened = 949 [2024-11-24 01:47:59,538 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-24 01:47:59,540 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-24 01:47:59,543 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-24 01:47:59,544 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-24 01:47:59,553 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,553 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,559 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,588 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2024-11-24 01:47:59,589 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,589 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,627 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,629 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,653 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,664 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,673 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,688 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-24 01:47:59,689 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-24 01:47:59,690 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-24 01:47:59,690 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-24 01:47:59,691 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (1/1) ... [2024-11-24 01:47:59,703 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 01:47:59,745 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:47:59,761 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-24 01:47:59,764 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-24 01:47:59,798 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2024-11-24 01:47:59,799 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2024-11-24 01:47:59,800 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2024-11-24 01:47:59,800 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2024-11-24 01:47:59,800 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2024-11-24 01:47:59,801 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2024-11-24 01:47:59,801 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2024-11-24 01:47:59,801 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2024-11-24 01:47:59,801 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2024-11-24 01:47:59,802 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2024-11-24 01:47:59,802 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2024-11-24 01:47:59,802 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2024-11-24 01:47:59,802 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2024-11-24 01:47:59,804 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2024-11-24 01:47:59,805 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2024-11-24 01:47:59,805 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2024-11-24 01:47:59,805 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2024-11-24 01:47:59,805 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2024-11-24 01:47:59,805 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2024-11-24 01:47:59,805 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2024-11-24 01:47:59,805 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2024-11-24 01:47:59,805 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2024-11-24 01:47:59,805 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2024-11-24 01:47:59,805 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2024-11-24 01:47:59,806 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2024-11-24 01:47:59,806 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2024-11-24 01:47:59,806 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2024-11-24 01:47:59,806 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2024-11-24 01:47:59,806 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-24 01:47:59,806 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2024-11-24 01:47:59,806 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2024-11-24 01:47:59,806 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2024-11-24 01:47:59,806 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2024-11-24 01:47:59,806 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2024-11-24 01:47:59,806 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2024-11-24 01:47:59,807 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2024-11-24 01:47:59,807 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2024-11-24 01:47:59,807 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2024-11-24 01:47:59,807 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2024-11-24 01:47:59,807 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2024-11-24 01:47:59,811 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2024-11-24 01:47:59,811 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt [2024-11-24 01:47:59,811 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt [2024-11-24 01:47:59,811 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2024-11-24 01:47:59,811 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2024-11-24 01:47:59,811 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2024-11-24 01:47:59,811 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2024-11-24 01:47:59,811 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2024-11-24 01:47:59,811 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2024-11-24 01:47:59,812 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2024-11-24 01:47:59,812 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2024-11-24 01:47:59,812 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2024-11-24 01:47:59,812 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2024-11-24 01:47:59,812 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-24 01:47:59,812 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-24 01:48:00,138 INFO L234 CfgBuilder]: Building ICFG [2024-11-24 01:48:00,141 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-24 01:48:01,476 INFO L? ?]: Removed 507 outVars from TransFormulas that were not future-live. [2024-11-24 01:48:01,476 INFO L283 CfgBuilder]: Performing block encoding [2024-11-24 01:48:01,515 INFO L307 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-24 01:48:01,516 INFO L312 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-24 01:48:01,516 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 24.11 01:48:01 BoogieIcfgContainer [2024-11-24 01:48:01,517 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-24 01:48:01,523 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-24 01:48:01,523 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-24 01:48:01,533 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-24 01:48:01,534 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 24.11 01:47:58" (1/3) ... [2024-11-24 01:48:01,535 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6283da9f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 24.11 01:48:01, skipping insertion in model container [2024-11-24 01:48:01,535 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 01:47:59" (2/3) ... [2024-11-24 01:48:01,536 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6283da9f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 24.11 01:48:01, skipping insertion in model container [2024-11-24 01:48:01,538 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 24.11 01:48:01" (3/3) ... [2024-11-24 01:48:01,539 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec6_product29.cil.c [2024-11-24 01:48:01,559 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-24 01:48:01,564 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec6_product29.cil.c that has 29 procedures, 412 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2024-11-24 01:48:01,679 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-24 01:48:01,702 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@7b95e962, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-24 01:48:01,703 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-24 01:48:01,711 INFO L276 IsEmpty]: Start isEmpty. Operand has 412 states, 317 states have (on average 1.5520504731861198) internal successors, (492), 322 states have internal predecessors, (492), 65 states have call successors, (65), 28 states have call predecessors, (65), 28 states have return successors, (65), 64 states have call predecessors, (65), 65 states have call successors, (65) [2024-11-24 01:48:01,741 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 155 [2024-11-24 01:48:01,742 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:01,743 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:01,744 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:01,750 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:01,751 INFO L85 PathProgramCache]: Analyzing trace with hash 60093505, now seen corresponding path program 1 times [2024-11-24 01:48:01,760 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:01,761 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [746908091] [2024-11-24 01:48:01,762 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:01,763 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:02,076 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:02,946 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 42 trivial. 0 not checked. [2024-11-24 01:48:02,946 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:02,950 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [746908091] [2024-11-24 01:48:02,950 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [746908091] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:02,951 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [430161622] [2024-11-24 01:48:02,951 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:02,951 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:02,951 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:02,957 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:02,959 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-24 01:48:03,518 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:03,525 INFO L256 TraceCheckSpWp]: Trace formula consists of 1254 conjuncts, 1 conjuncts are in the unsatisfiable core [2024-11-24 01:48:03,537 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:03,593 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-24 01:48:03,595 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:48:03,599 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [430161622] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:03,599 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:48:03,600 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [5] total 5 [2024-11-24 01:48:03,602 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1639585772] [2024-11-24 01:48:03,603 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:03,609 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-24 01:48:03,609 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:03,636 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-24 01:48:03,637 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:03,642 INFO L87 Difference]: Start difference. First operand has 412 states, 317 states have (on average 1.5520504731861198) internal successors, (492), 322 states have internal predecessors, (492), 65 states have call successors, (65), 28 states have call predecessors, (65), 28 states have return successors, (65), 64 states have call predecessors, (65), 65 states have call successors, (65) Second operand has 2 states, 2 states have (on average 41.0) internal successors, (82), 2 states have internal predecessors, (82), 2 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:03,761 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:03,762 INFO L93 Difference]: Finished difference Result 637 states and 943 transitions. [2024-11-24 01:48:03,763 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-24 01:48:03,768 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 41.0) internal successors, (82), 2 states have internal predecessors, (82), 2 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 154 [2024-11-24 01:48:03,768 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:03,788 INFO L225 Difference]: With dead ends: 637 [2024-11-24 01:48:03,788 INFO L226 Difference]: Without dead ends: 405 [2024-11-24 01:48:03,795 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 158 GetRequests, 155 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:03,800 INFO L435 NwaCegarLoop]: 618 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 618 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:03,801 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 618 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:03,823 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 405 states. [2024-11-24 01:48:03,894 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 405 to 405. [2024-11-24 01:48:03,897 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 405 states, 311 states have (on average 1.5466237942122187) internal successors, (481), 315 states have internal predecessors, (481), 65 states have call successors, (65), 28 states have call predecessors, (65), 28 states have return successors, (64), 63 states have call predecessors, (64), 64 states have call successors, (64) [2024-11-24 01:48:03,915 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 405 states to 405 states and 610 transitions. [2024-11-24 01:48:03,922 INFO L78 Accepts]: Start accepts. Automaton has 405 states and 610 transitions. Word has length 154 [2024-11-24 01:48:03,926 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:03,927 INFO L471 AbstractCegarLoop]: Abstraction has 405 states and 610 transitions. [2024-11-24 01:48:03,927 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 41.0) internal successors, (82), 2 states have internal predecessors, (82), 2 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:03,927 INFO L276 IsEmpty]: Start isEmpty. Operand 405 states and 610 transitions. [2024-11-24 01:48:03,936 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 155 [2024-11-24 01:48:03,939 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:03,940 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:03,952 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-24 01:48:04,140 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-11-24 01:48:04,141 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:04,141 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:04,142 INFO L85 PathProgramCache]: Analyzing trace with hash -587028025, now seen corresponding path program 1 times [2024-11-24 01:48:04,142 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:04,142 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1585670633] [2024-11-24 01:48:04,142 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:04,142 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:04,217 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:04,692 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 42 trivial. 0 not checked. [2024-11-24 01:48:04,693 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:04,693 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1585670633] [2024-11-24 01:48:04,693 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1585670633] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:04,693 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [788695768] [2024-11-24 01:48:04,693 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:04,693 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:04,694 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:04,699 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:04,704 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-24 01:48:05,160 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:05,166 INFO L256 TraceCheckSpWp]: Trace formula consists of 1254 conjuncts, 2 conjuncts are in the unsatisfiable core [2024-11-24 01:48:05,173 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:05,230 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-24 01:48:05,231 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:48:05,231 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [788695768] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:05,231 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:48:05,231 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-24 01:48:05,231 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [520164317] [2024-11-24 01:48:05,231 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:05,232 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:05,232 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:05,233 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:05,233 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:48:05,233 INFO L87 Difference]: Start difference. First operand 405 states and 610 transitions. Second operand has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:05,321 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:05,321 INFO L93 Difference]: Finished difference Result 626 states and 920 transitions. [2024-11-24 01:48:05,322 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:05,322 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 154 [2024-11-24 01:48:05,324 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:05,330 INFO L225 Difference]: With dead ends: 626 [2024-11-24 01:48:05,332 INFO L226 Difference]: Without dead ends: 407 [2024-11-24 01:48:05,334 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 158 GetRequests, 154 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:48:05,335 INFO L435 NwaCegarLoop]: 608 mSDtfsCounter, 1 mSDsluCounter, 606 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 1214 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:05,336 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 1214 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:05,338 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 407 states. [2024-11-24 01:48:05,386 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 407 to 406. [2024-11-24 01:48:05,390 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 406 states, 312 states have (on average 1.544871794871795) internal successors, (482), 316 states have internal predecessors, (482), 65 states have call successors, (65), 28 states have call predecessors, (65), 28 states have return successors, (64), 63 states have call predecessors, (64), 64 states have call successors, (64) [2024-11-24 01:48:05,396 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 406 states to 406 states and 611 transitions. [2024-11-24 01:48:05,399 INFO L78 Accepts]: Start accepts. Automaton has 406 states and 611 transitions. Word has length 154 [2024-11-24 01:48:05,400 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:05,401 INFO L471 AbstractCegarLoop]: Abstraction has 406 states and 611 transitions. [2024-11-24 01:48:05,402 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.333333333333332) internal successors, (82), 3 states have internal predecessors, (82), 2 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:05,402 INFO L276 IsEmpty]: Start isEmpty. Operand 406 states and 611 transitions. [2024-11-24 01:48:05,407 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 141 [2024-11-24 01:48:05,409 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:05,409 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:05,422 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-24 01:48:05,613 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:05,614 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:05,614 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:05,615 INFO L85 PathProgramCache]: Analyzing trace with hash 381432730, now seen corresponding path program 1 times [2024-11-24 01:48:05,615 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:05,615 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1955359495] [2024-11-24 01:48:05,615 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:05,615 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:05,688 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:06,017 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-24 01:48:06,019 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:06,019 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1955359495] [2024-11-24 01:48:06,019 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1955359495] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:06,019 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1666086838] [2024-11-24 01:48:06,019 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:06,019 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:06,020 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:06,022 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:06,025 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-24 01:48:06,509 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:06,514 INFO L256 TraceCheckSpWp]: Trace formula consists of 1187 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-24 01:48:06,522 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:06,565 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-24 01:48:06,565 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:48:06,565 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1666086838] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:06,565 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:48:06,565 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-24 01:48:06,566 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [509074793] [2024-11-24 01:48:06,566 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:06,566 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:06,566 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:06,567 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:06,567 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:48:06,571 INFO L87 Difference]: Start difference. First operand 406 states and 611 transitions. Second operand has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 2 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:06,653 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:06,653 INFO L93 Difference]: Finished difference Result 855 states and 1306 transitions. [2024-11-24 01:48:06,654 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:06,654 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 2 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 140 [2024-11-24 01:48:06,654 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:06,660 INFO L225 Difference]: With dead ends: 855 [2024-11-24 01:48:06,660 INFO L226 Difference]: Without dead ends: 475 [2024-11-24 01:48:06,662 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 144 GetRequests, 140 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 01:48:06,666 INFO L435 NwaCegarLoop]: 614 mSDtfsCounter, 126 mSDsluCounter, 562 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1176 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:06,667 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1176 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:06,668 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 475 states. [2024-11-24 01:48:06,711 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 475 to 467. [2024-11-24 01:48:06,713 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 467 states, 359 states have (on average 1.565459610027855) internal successors, (562), 363 states have internal predecessors, (562), 79 states have call successors, (79), 28 states have call predecessors, (79), 28 states have return successors, (78), 77 states have call predecessors, (78), 78 states have call successors, (78) [2024-11-24 01:48:06,724 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 467 states to 467 states and 719 transitions. [2024-11-24 01:48:06,724 INFO L78 Accepts]: Start accepts. Automaton has 467 states and 719 transitions. Word has length 140 [2024-11-24 01:48:06,726 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:06,726 INFO L471 AbstractCegarLoop]: Abstraction has 467 states and 719 transitions. [2024-11-24 01:48:06,726 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 2 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:06,726 INFO L276 IsEmpty]: Start isEmpty. Operand 467 states and 719 transitions. [2024-11-24 01:48:06,734 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 161 [2024-11-24 01:48:06,736 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:06,736 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:06,749 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-24 01:48:06,937 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:06,937 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:06,937 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:06,938 INFO L85 PathProgramCache]: Analyzing trace with hash -1172382602, now seen corresponding path program 1 times [2024-11-24 01:48:06,938 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:06,938 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2100860741] [2024-11-24 01:48:06,938 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:06,938 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:06,997 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:07,290 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 43 trivial. 0 not checked. [2024-11-24 01:48:07,290 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:07,290 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2100860741] [2024-11-24 01:48:07,291 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2100860741] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:07,291 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [497084814] [2024-11-24 01:48:07,291 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:07,292 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:07,292 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:07,294 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:07,299 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-24 01:48:07,768 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:07,774 INFO L256 TraceCheckSpWp]: Trace formula consists of 1270 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-24 01:48:07,782 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:07,874 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 01:48:07,874 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:48:07,874 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [497084814] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:07,874 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:48:07,874 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8 [2024-11-24 01:48:07,875 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [798677127] [2024-11-24 01:48:07,875 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:07,876 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:48:07,876 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:07,877 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:48:07,877 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-24 01:48:07,877 INFO L87 Difference]: Start difference. First operand 467 states and 719 transitions. Second operand has 5 states, 4 states have (on average 24.25) internal successors, (97), 5 states have internal predecessors, (97), 3 states have call successors, (24), 2 states have call predecessors, (24), 3 states have return successors, (21), 2 states have call predecessors, (21), 3 states have call successors, (21) [2024-11-24 01:48:08,041 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:08,041 INFO L93 Difference]: Finished difference Result 925 states and 1428 transitions. [2024-11-24 01:48:08,042 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:48:08,042 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 24.25) internal successors, (97), 5 states have internal predecessors, (97), 3 states have call successors, (24), 2 states have call predecessors, (24), 3 states have return successors, (21), 2 states have call predecessors, (21), 3 states have call successors, (21) Word has length 160 [2024-11-24 01:48:08,043 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:08,050 INFO L225 Difference]: With dead ends: 925 [2024-11-24 01:48:08,050 INFO L226 Difference]: Without dead ends: 469 [2024-11-24 01:48:08,053 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 164 GetRequests, 158 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-24 01:48:08,055 INFO L435 NwaCegarLoop]: 602 mSDtfsCounter, 2 mSDsluCounter, 1795 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2397 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:08,056 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2397 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 01:48:08,058 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 469 states. [2024-11-24 01:48:08,098 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 469 to 469. [2024-11-24 01:48:08,100 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 469 states, 360 states have (on average 1.5638888888888889) internal successors, (563), 365 states have internal predecessors, (563), 79 states have call successors, (79), 28 states have call predecessors, (79), 29 states have return successors, (80), 77 states have call predecessors, (80), 78 states have call successors, (80) [2024-11-24 01:48:08,109 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 469 states to 469 states and 722 transitions. [2024-11-24 01:48:08,110 INFO L78 Accepts]: Start accepts. Automaton has 469 states and 722 transitions. Word has length 160 [2024-11-24 01:48:08,110 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:08,110 INFO L471 AbstractCegarLoop]: Abstraction has 469 states and 722 transitions. [2024-11-24 01:48:08,110 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 24.25) internal successors, (97), 5 states have internal predecessors, (97), 3 states have call successors, (24), 2 states have call predecessors, (24), 3 states have return successors, (21), 2 states have call predecessors, (21), 3 states have call successors, (21) [2024-11-24 01:48:08,111 INFO L276 IsEmpty]: Start isEmpty. Operand 469 states and 722 transitions. [2024-11-24 01:48:08,115 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 143 [2024-11-24 01:48:08,117 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:08,118 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:08,131 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-24 01:48:08,321 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:08,322 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:08,323 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:08,323 INFO L85 PathProgramCache]: Analyzing trace with hash -670883258, now seen corresponding path program 1 times [2024-11-24 01:48:08,323 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:08,323 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1801514156] [2024-11-24 01:48:08,323 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:08,323 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:08,385 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:08,670 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-24 01:48:08,671 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:08,671 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1801514156] [2024-11-24 01:48:08,671 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1801514156] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:08,671 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [537244838] [2024-11-24 01:48:08,671 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:08,671 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:08,671 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:08,674 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:08,677 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-24 01:48:09,143 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:09,148 INFO L256 TraceCheckSpWp]: Trace formula consists of 1193 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-24 01:48:09,154 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:09,244 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-24 01:48:09,244 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 01:48:09,244 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [537244838] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:09,245 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 01:48:09,245 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11 [2024-11-24 01:48:09,245 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1488888964] [2024-11-24 01:48:09,245 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:09,247 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:48:09,247 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:09,248 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:48:09,248 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-24 01:48:09,248 INFO L87 Difference]: Start difference. First operand 469 states and 722 transitions. Second operand has 5 states, 5 states have (on average 18.4) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (21), 2 states have call predecessors, (21), 3 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:09,363 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:09,366 INFO L93 Difference]: Finished difference Result 927 states and 1433 transitions. [2024-11-24 01:48:09,366 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:48:09,367 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 18.4) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (21), 2 states have call predecessors, (21), 3 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) Word has length 142 [2024-11-24 01:48:09,367 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:09,374 INFO L225 Difference]: With dead ends: 927 [2024-11-24 01:48:09,374 INFO L226 Difference]: Without dead ends: 471 [2024-11-24 01:48:09,377 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 149 GetRequests, 140 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-24 01:48:09,379 INFO L435 NwaCegarLoop]: 600 mSDtfsCounter, 2 mSDsluCounter, 1783 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2383 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:09,379 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2383 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 01:48:09,380 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 471 states. [2024-11-24 01:48:09,402 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 471 to 471. [2024-11-24 01:48:09,404 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 471 states, 361 states have (on average 1.5623268698060941) internal successors, (564), 367 states have internal predecessors, (564), 79 states have call successors, (79), 28 states have call predecessors, (79), 30 states have return successors, (85), 77 states have call predecessors, (85), 78 states have call successors, (85) [2024-11-24 01:48:09,409 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 471 states to 471 states and 728 transitions. [2024-11-24 01:48:09,410 INFO L78 Accepts]: Start accepts. Automaton has 471 states and 728 transitions. Word has length 142 [2024-11-24 01:48:09,410 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:09,410 INFO L471 AbstractCegarLoop]: Abstraction has 471 states and 728 transitions. [2024-11-24 01:48:09,411 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 18.4) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (21), 2 states have call predecessors, (21), 3 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:09,411 INFO L276 IsEmpty]: Start isEmpty. Operand 471 states and 728 transitions. [2024-11-24 01:48:09,415 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 144 [2024-11-24 01:48:09,415 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:09,415 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:09,429 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-11-24 01:48:09,616 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:09,617 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:09,617 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:09,617 INFO L85 PathProgramCache]: Analyzing trace with hash -1097750338, now seen corresponding path program 1 times [2024-11-24 01:48:09,618 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:09,618 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2078693981] [2024-11-24 01:48:09,618 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:09,619 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:09,671 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:09,915 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-24 01:48:09,916 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:09,916 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2078693981] [2024-11-24 01:48:09,916 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2078693981] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:09,916 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:09,916 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:48:09,916 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [944117109] [2024-11-24 01:48:09,917 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:09,917 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:48:09,920 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:09,921 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:48:09,921 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:09,921 INFO L87 Difference]: Start difference. First operand 471 states and 728 transitions. Second operand has 5 states, 4 states have (on average 22.0) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:10,003 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:10,004 INFO L93 Difference]: Finished difference Result 919 states and 1424 transitions. [2024-11-24 01:48:10,004 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:48:10,005 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 22.0) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 3 states have call successors, (18) Word has length 143 [2024-11-24 01:48:10,005 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:10,014 INFO L225 Difference]: With dead ends: 919 [2024-11-24 01:48:10,014 INFO L226 Difference]: Without dead ends: 471 [2024-11-24 01:48:10,017 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:10,017 INFO L435 NwaCegarLoop]: 603 mSDtfsCounter, 2 mSDsluCounter, 1798 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2401 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:10,018 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2401 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:10,019 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 471 states. [2024-11-24 01:48:10,056 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 471 to 471. [2024-11-24 01:48:10,059 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 471 states, 361 states have (on average 1.5623268698060941) internal successors, (564), 367 states have internal predecessors, (564), 79 states have call successors, (79), 28 states have call predecessors, (79), 30 states have return successors, (84), 77 states have call predecessors, (84), 78 states have call successors, (84) [2024-11-24 01:48:10,064 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 471 states to 471 states and 727 transitions. [2024-11-24 01:48:10,065 INFO L78 Accepts]: Start accepts. Automaton has 471 states and 727 transitions. Word has length 143 [2024-11-24 01:48:10,065 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:10,066 INFO L471 AbstractCegarLoop]: Abstraction has 471 states and 727 transitions. [2024-11-24 01:48:10,066 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 22.0) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 2 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:10,066 INFO L276 IsEmpty]: Start isEmpty. Operand 471 states and 727 transitions. [2024-11-24 01:48:10,069 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 145 [2024-11-24 01:48:10,070 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:10,070 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:10,070 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-24 01:48:10,070 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:10,072 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:10,072 INFO L85 PathProgramCache]: Analyzing trace with hash 1989582467, now seen corresponding path program 2 times [2024-11-24 01:48:10,072 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:10,072 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [49971894] [2024-11-24 01:48:10,073 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-11-24 01:48:10,073 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:10,134 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-11-24 01:48:10,134 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-24 01:48:10,353 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked. [2024-11-24 01:48:10,354 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:10,354 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [49971894] [2024-11-24 01:48:10,354 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [49971894] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:10,354 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:10,354 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:48:10,354 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1726533789] [2024-11-24 01:48:10,354 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:10,355 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:48:10,356 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:10,357 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:48:10,357 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:10,357 INFO L87 Difference]: Start difference. First operand 471 states and 727 transitions. Second operand has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:10,446 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:10,446 INFO L93 Difference]: Finished difference Result 917 states and 1419 transitions. [2024-11-24 01:48:10,447 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:48:10,447 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) Word has length 144 [2024-11-24 01:48:10,447 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:10,452 INFO L225 Difference]: With dead ends: 917 [2024-11-24 01:48:10,452 INFO L226 Difference]: Without dead ends: 471 [2024-11-24 01:48:10,454 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:10,455 INFO L435 NwaCegarLoop]: 601 mSDtfsCounter, 2 mSDsluCounter, 1786 mSDsCounter, 0 mSdLazyCounter, 45 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2387 SdHoareTripleChecker+Invalid, 45 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 45 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:10,455 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2387 Invalid, 45 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 45 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:10,456 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 471 states. [2024-11-24 01:48:10,477 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 471 to 471. [2024-11-24 01:48:10,478 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 471 states, 361 states have (on average 1.5623268698060941) internal successors, (564), 367 states have internal predecessors, (564), 79 states have call successors, (79), 28 states have call predecessors, (79), 30 states have return successors, (83), 77 states have call predecessors, (83), 78 states have call successors, (83) [2024-11-24 01:48:10,483 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 471 states to 471 states and 726 transitions. [2024-11-24 01:48:10,484 INFO L78 Accepts]: Start accepts. Automaton has 471 states and 726 transitions. Word has length 144 [2024-11-24 01:48:10,484 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:10,485 INFO L471 AbstractCegarLoop]: Abstraction has 471 states and 726 transitions. [2024-11-24 01:48:10,485 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:10,485 INFO L276 IsEmpty]: Start isEmpty. Operand 471 states and 726 transitions. [2024-11-24 01:48:10,489 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 146 [2024-11-24 01:48:10,489 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:10,489 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:10,489 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-24 01:48:10,489 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:10,490 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:10,490 INFO L85 PathProgramCache]: Analyzing trace with hash 1781715865, now seen corresponding path program 3 times [2024-11-24 01:48:10,490 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:10,490 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2045239248] [2024-11-24 01:48:10,490 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-24 01:48:10,490 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:10,540 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-11-24 01:48:10,540 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-24 01:48:10,713 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 32 trivial. 0 not checked. [2024-11-24 01:48:10,713 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:10,713 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2045239248] [2024-11-24 01:48:10,714 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2045239248] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:10,714 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:10,714 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:48:10,714 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [668581789] [2024-11-24 01:48:10,714 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:10,715 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:48:10,715 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:10,715 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:48:10,716 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:10,716 INFO L87 Difference]: Start difference. First operand 471 states and 726 transitions. Second operand has 5 states, 5 states have (on average 17.8) internal successors, (89), 5 states have internal predecessors, (89), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:10,833 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:10,833 INFO L93 Difference]: Finished difference Result 919 states and 1425 transitions. [2024-11-24 01:48:10,834 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:48:10,834 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.8) internal successors, (89), 5 states have internal predecessors, (89), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) Word has length 145 [2024-11-24 01:48:10,834 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:10,839 INFO L225 Difference]: With dead ends: 919 [2024-11-24 01:48:10,839 INFO L226 Difference]: Without dead ends: 473 [2024-11-24 01:48:10,841 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:10,842 INFO L435 NwaCegarLoop]: 604 mSDtfsCounter, 1 mSDsluCounter, 1794 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2398 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:10,842 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2398 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 01:48:10,843 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 473 states. [2024-11-24 01:48:10,863 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 473 to 473. [2024-11-24 01:48:10,864 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 473 states, 362 states have (on average 1.5607734806629834) internal successors, (565), 369 states have internal predecessors, (565), 79 states have call successors, (79), 28 states have call predecessors, (79), 31 states have return successors, (88), 77 states have call predecessors, (88), 78 states have call successors, (88) [2024-11-24 01:48:10,869 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 473 states to 473 states and 732 transitions. [2024-11-24 01:48:10,871 INFO L78 Accepts]: Start accepts. Automaton has 473 states and 732 transitions. Word has length 145 [2024-11-24 01:48:10,871 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:10,871 INFO L471 AbstractCegarLoop]: Abstraction has 473 states and 732 transitions. [2024-11-24 01:48:10,871 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 17.8) internal successors, (89), 5 states have internal predecessors, (89), 3 states have call successors, (21), 2 states have call predecessors, (21), 2 states have return successors, (18), 3 states have call predecessors, (18), 3 states have call successors, (18) [2024-11-24 01:48:10,871 INFO L276 IsEmpty]: Start isEmpty. Operand 473 states and 732 transitions. [2024-11-24 01:48:10,875 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 166 [2024-11-24 01:48:10,876 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:10,876 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:10,876 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-24 01:48:10,876 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:10,877 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:10,877 INFO L85 PathProgramCache]: Analyzing trace with hash 1676235053, now seen corresponding path program 1 times [2024-11-24 01:48:10,877 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:10,877 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [37777223] [2024-11-24 01:48:10,877 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:10,878 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:10,929 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:11,216 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked. [2024-11-24 01:48:11,217 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:11,217 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [37777223] [2024-11-24 01:48:11,217 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [37777223] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:11,217 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:11,217 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 01:48:11,217 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1740596651] [2024-11-24 01:48:11,217 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:11,218 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 01:48:11,218 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:11,218 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 01:48:11,219 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:11,219 INFO L87 Difference]: Start difference. First operand 473 states and 732 transitions. Second operand has 5 states, 4 states have (on average 24.5) internal successors, (98), 5 states have internal predecessors, (98), 3 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 3 states have call successors, (21) [2024-11-24 01:48:11,299 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:11,299 INFO L93 Difference]: Finished difference Result 925 states and 1435 transitions. [2024-11-24 01:48:11,300 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 01:48:11,300 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 24.5) internal successors, (98), 5 states have internal predecessors, (98), 3 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 3 states have call successors, (21) Word has length 165 [2024-11-24 01:48:11,300 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:11,305 INFO L225 Difference]: With dead ends: 925 [2024-11-24 01:48:11,305 INFO L226 Difference]: Without dead ends: 475 [2024-11-24 01:48:11,307 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 01:48:11,308 INFO L435 NwaCegarLoop]: 604 mSDtfsCounter, 1 mSDsluCounter, 1800 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2404 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:11,308 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2404 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:11,310 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 475 states. [2024-11-24 01:48:11,330 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 475 to 475. [2024-11-24 01:48:11,332 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 475 states, 363 states have (on average 1.559228650137741) internal successors, (566), 371 states have internal predecessors, (566), 79 states have call successors, (79), 28 states have call predecessors, (79), 32 states have return successors, (90), 77 states have call predecessors, (90), 78 states have call successors, (90) [2024-11-24 01:48:11,337 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 475 states to 475 states and 735 transitions. [2024-11-24 01:48:11,338 INFO L78 Accepts]: Start accepts. Automaton has 475 states and 735 transitions. Word has length 165 [2024-11-24 01:48:11,338 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:11,338 INFO L471 AbstractCegarLoop]: Abstraction has 475 states and 735 transitions. [2024-11-24 01:48:11,338 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 24.5) internal successors, (98), 5 states have internal predecessors, (98), 3 states have call successors, (24), 2 states have call predecessors, (24), 2 states have return successors, (21), 2 states have call predecessors, (21), 3 states have call successors, (21) [2024-11-24 01:48:11,339 INFO L276 IsEmpty]: Start isEmpty. Operand 475 states and 735 transitions. [2024-11-24 01:48:11,342 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 148 [2024-11-24 01:48:11,342 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:11,343 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:11,343 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-24 01:48:11,343 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:11,344 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:11,344 INFO L85 PathProgramCache]: Analyzing trace with hash -824705816, now seen corresponding path program 1 times [2024-11-24 01:48:11,344 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:11,344 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [438614055] [2024-11-24 01:48:11,344 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:11,344 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:11,386 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:11,597 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:11,598 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:11,598 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [438614055] [2024-11-24 01:48:11,598 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [438614055] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:11,598 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1325117383] [2024-11-24 01:48:11,598 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:11,598 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:11,598 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:11,600 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:11,604 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-24 01:48:12,096 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:12,102 INFO L256 TraceCheckSpWp]: Trace formula consists of 1198 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-24 01:48:12,107 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:12,144 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:12,146 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-24 01:48:12,294 INFO L134 CoverageAnalysis]: Checked inductivity of 39 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:12,294 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1325117383] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-24 01:48:12,294 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-24 01:48:12,294 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2024-11-24 01:48:12,294 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1391603243] [2024-11-24 01:48:12,294 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-24 01:48:12,295 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-24 01:48:12,295 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:12,296 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-24 01:48:12,296 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-24 01:48:12,298 INFO L87 Difference]: Start difference. First operand 475 states and 735 transitions. Second operand has 7 states, 7 states have (on average 18.285714285714285) internal successors, (128), 7 states have internal predecessors, (128), 2 states have call successors, (33), 2 states have call predecessors, (33), 2 states have return successors, (30), 2 states have call predecessors, (30), 2 states have call successors, (30) [2024-11-24 01:48:12,610 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:12,610 INFO L93 Difference]: Finished difference Result 1105 states and 1770 transitions. [2024-11-24 01:48:12,611 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-24 01:48:12,611 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 18.285714285714285) internal successors, (128), 7 states have internal predecessors, (128), 2 states have call successors, (33), 2 states have call predecessors, (33), 2 states have return successors, (30), 2 states have call predecessors, (30), 2 states have call successors, (30) Word has length 147 [2024-11-24 01:48:12,612 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:12,619 INFO L225 Difference]: With dead ends: 1105 [2024-11-24 01:48:12,620 INFO L226 Difference]: Without dead ends: 886 [2024-11-24 01:48:12,621 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 296 GetRequests, 291 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-24 01:48:12,622 INFO L435 NwaCegarLoop]: 638 mSDtfsCounter, 453 mSDsluCounter, 2159 mSDsCounter, 0 mSdLazyCounter, 103 mSolverCounterSat, 13 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 507 SdHoareTripleChecker+Valid, 2797 SdHoareTripleChecker+Invalid, 116 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 103 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:12,622 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [507 Valid, 2797 Invalid, 116 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 103 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-24 01:48:12,624 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 886 states. [2024-11-24 01:48:12,667 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 886 to 862. [2024-11-24 01:48:12,670 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 862 states, 671 states have (on average 1.6289120715350223) internal successors, (1093), 679 states have internal predecessors, (1093), 158 states have call successors, (158), 28 states have call predecessors, (158), 32 states have return successors, (179), 156 states have call predecessors, (179), 157 states have call successors, (179) [2024-11-24 01:48:12,680 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 862 states to 862 states and 1430 transitions. [2024-11-24 01:48:12,682 INFO L78 Accepts]: Start accepts. Automaton has 862 states and 1430 transitions. Word has length 147 [2024-11-24 01:48:12,682 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:12,682 INFO L471 AbstractCegarLoop]: Abstraction has 862 states and 1430 transitions. [2024-11-24 01:48:12,683 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 18.285714285714285) internal successors, (128), 7 states have internal predecessors, (128), 2 states have call successors, (33), 2 states have call predecessors, (33), 2 states have return successors, (30), 2 states have call predecessors, (30), 2 states have call successors, (30) [2024-11-24 01:48:12,683 INFO L276 IsEmpty]: Start isEmpty. Operand 862 states and 1430 transitions. [2024-11-24 01:48:12,690 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 174 [2024-11-24 01:48:12,690 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:12,690 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:12,703 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-11-24 01:48:12,891 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-24 01:48:12,891 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:12,891 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:12,892 INFO L85 PathProgramCache]: Analyzing trace with hash -713561297, now seen corresponding path program 1 times [2024-11-24 01:48:12,892 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:12,892 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1700788685] [2024-11-24 01:48:12,892 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:12,892 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:12,942 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:13,042 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 01:48:13,042 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:13,042 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1700788685] [2024-11-24 01:48:13,042 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1700788685] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:13,042 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:13,042 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:13,043 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [456980765] [2024-11-24 01:48:13,043 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:13,043 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:13,043 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:13,044 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:13,044 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:13,045 INFO L87 Difference]: Start difference. First operand 862 states and 1430 transitions. Second operand has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:13,119 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:13,120 INFO L93 Difference]: Finished difference Result 2049 states and 3452 transitions. [2024-11-24 01:48:13,120 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:13,120 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 173 [2024-11-24 01:48:13,121 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:13,131 INFO L225 Difference]: With dead ends: 2049 [2024-11-24 01:48:13,131 INFO L226 Difference]: Without dead ends: 1253 [2024-11-24 01:48:13,136 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:13,137 INFO L435 NwaCegarLoop]: 612 mSDtfsCounter, 124 mSDsluCounter, 606 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1218 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:13,137 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1218 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:13,139 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1253 states. [2024-11-24 01:48:13,203 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1253 to 1245. [2024-11-24 01:48:13,206 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1245 states, 975 states have (on average 1.6471794871794871) internal successors, (1606), 983 states have internal predecessors, (1606), 237 states have call successors, (237), 28 states have call predecessors, (237), 32 states have return successors, (268), 235 states have call predecessors, (268), 236 states have call successors, (268) [2024-11-24 01:48:13,217 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1245 states to 1245 states and 2111 transitions. [2024-11-24 01:48:13,218 INFO L78 Accepts]: Start accepts. Automaton has 1245 states and 2111 transitions. Word has length 173 [2024-11-24 01:48:13,219 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:13,219 INFO L471 AbstractCegarLoop]: Abstraction has 1245 states and 2111 transitions. [2024-11-24 01:48:13,219 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:13,219 INFO L276 IsEmpty]: Start isEmpty. Operand 1245 states and 2111 transitions. [2024-11-24 01:48:13,229 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 156 [2024-11-24 01:48:13,230 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:13,230 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:13,230 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-24 01:48:13,230 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:13,231 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:13,231 INFO L85 PathProgramCache]: Analyzing trace with hash 1572487872, now seen corresponding path program 1 times [2024-11-24 01:48:13,231 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:13,231 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1113121768] [2024-11-24 01:48:13,231 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:13,231 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:13,275 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:13,339 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:13,339 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:13,340 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1113121768] [2024-11-24 01:48:13,340 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1113121768] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:13,343 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:13,343 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:13,343 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1833672271] [2024-11-24 01:48:13,343 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:13,344 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:13,344 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:13,344 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:13,345 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:13,345 INFO L87 Difference]: Start difference. First operand 1245 states and 2111 transitions. Second operand has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:13,469 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:13,469 INFO L93 Difference]: Finished difference Result 2981 states and 5093 transitions. [2024-11-24 01:48:13,470 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:13,470 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 155 [2024-11-24 01:48:13,471 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:13,488 INFO L225 Difference]: With dead ends: 2981 [2024-11-24 01:48:13,488 INFO L226 Difference]: Without dead ends: 1853 [2024-11-24 01:48:13,494 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:13,496 INFO L435 NwaCegarLoop]: 620 mSDtfsCounter, 122 mSDsluCounter, 604 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1224 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:13,496 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1224 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:13,500 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1853 states. [2024-11-24 01:48:13,655 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1853 to 1845. [2024-11-24 01:48:13,659 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1845 states, 1456 states have (on average 1.6600274725274726) internal successors, (2417), 1464 states have internal predecessors, (2417), 356 states have call successors, (356), 28 states have call predecessors, (356), 32 states have return successors, (387), 354 states have call predecessors, (387), 355 states have call successors, (387) [2024-11-24 01:48:13,681 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1845 states to 1845 states and 3160 transitions. [2024-11-24 01:48:13,683 INFO L78 Accepts]: Start accepts. Automaton has 1845 states and 3160 transitions. Word has length 155 [2024-11-24 01:48:13,683 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:13,683 INFO L471 AbstractCegarLoop]: Abstraction has 1845 states and 3160 transitions. [2024-11-24 01:48:13,684 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:13,684 INFO L276 IsEmpty]: Start isEmpty. Operand 1845 states and 3160 transitions. [2024-11-24 01:48:13,700 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 176 [2024-11-24 01:48:13,700 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:13,701 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:13,701 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-24 01:48:13,701 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:13,702 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:13,702 INFO L85 PathProgramCache]: Analyzing trace with hash 2075148365, now seen corresponding path program 1 times [2024-11-24 01:48:13,703 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:13,703 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [211199804] [2024-11-24 01:48:13,703 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:13,703 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:13,746 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:13,806 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 01:48:13,807 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:13,807 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [211199804] [2024-11-24 01:48:13,807 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [211199804] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:13,807 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:13,807 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:13,808 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1768197790] [2024-11-24 01:48:13,808 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:13,808 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:13,809 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:13,811 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:13,811 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:13,811 INFO L87 Difference]: Start difference. First operand 1845 states and 3160 transitions. Second operand has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:13,967 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:13,967 INFO L93 Difference]: Finished difference Result 4378 states and 7565 transitions. [2024-11-24 01:48:13,967 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:13,969 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 175 [2024-11-24 01:48:13,969 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:13,991 INFO L225 Difference]: With dead ends: 4378 [2024-11-24 01:48:13,991 INFO L226 Difference]: Without dead ends: 2771 [2024-11-24 01:48:13,999 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:14,000 INFO L435 NwaCegarLoop]: 609 mSDtfsCounter, 120 mSDsluCounter, 600 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1209 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:14,000 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1209 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:14,005 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2771 states. [2024-11-24 01:48:14,231 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2771 to 2763. [2024-11-24 01:48:14,237 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2763 states, 2212 states have (on average 1.6704339963833634) internal successors, (3695), 2220 states have internal predecessors, (3695), 518 states have call successors, (518), 28 states have call predecessors, (518), 32 states have return successors, (565), 516 states have call predecessors, (565), 517 states have call successors, (565) [2024-11-24 01:48:14,268 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2763 states to 2763 states and 4778 transitions. [2024-11-24 01:48:14,271 INFO L78 Accepts]: Start accepts. Automaton has 2763 states and 4778 transitions. Word has length 175 [2024-11-24 01:48:14,272 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:14,272 INFO L471 AbstractCegarLoop]: Abstraction has 2763 states and 4778 transitions. [2024-11-24 01:48:14,272 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 35.0) internal successors, (105), 3 states have internal predecessors, (105), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:14,272 INFO L276 IsEmpty]: Start isEmpty. Operand 2763 states and 4778 transitions. [2024-11-24 01:48:14,320 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 177 [2024-11-24 01:48:14,320 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:14,320 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:14,321 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-11-24 01:48:14,321 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:14,322 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:14,322 INFO L85 PathProgramCache]: Analyzing trace with hash -847307660, now seen corresponding path program 1 times [2024-11-24 01:48:14,322 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:14,322 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [565817649] [2024-11-24 01:48:14,322 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:14,323 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:14,385 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:14,475 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 01:48:14,476 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:14,476 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [565817649] [2024-11-24 01:48:14,476 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [565817649] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:14,476 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:14,476 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:14,476 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [893447334] [2024-11-24 01:48:14,476 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:14,477 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:14,479 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:14,480 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:14,480 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:14,480 INFO L87 Difference]: Start difference. First operand 2763 states and 4778 transitions. Second operand has 3 states, 3 states have (on average 35.333333333333336) internal successors, (106), 3 states have internal predecessors, (106), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:14,755 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:14,756 INFO L93 Difference]: Finished difference Result 6581 states and 11471 transitions. [2024-11-24 01:48:14,756 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:14,757 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 35.333333333333336) internal successors, (106), 3 states have internal predecessors, (106), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 176 [2024-11-24 01:48:14,757 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:14,791 INFO L225 Difference]: With dead ends: 6581 [2024-11-24 01:48:14,791 INFO L226 Difference]: Without dead ends: 4253 [2024-11-24 01:48:14,802 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:14,803 INFO L435 NwaCegarLoop]: 609 mSDtfsCounter, 118 mSDsluCounter, 600 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1209 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:14,804 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1209 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:14,809 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4253 states. [2024-11-24 01:48:15,126 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4253 to 4245. [2024-11-24 01:48:15,137 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4245 states, 3449 states have (on average 1.6778776456944042) internal successors, (5787), 3457 states have internal predecessors, (5787), 763 states have call successors, (763), 28 states have call predecessors, (763), 32 states have return successors, (836), 761 states have call predecessors, (836), 762 states have call successors, (836) [2024-11-24 01:48:15,167 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4245 states to 4245 states and 7386 transitions. [2024-11-24 01:48:15,171 INFO L78 Accepts]: Start accepts. Automaton has 4245 states and 7386 transitions. Word has length 176 [2024-11-24 01:48:15,172 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:15,172 INFO L471 AbstractCegarLoop]: Abstraction has 4245 states and 7386 transitions. [2024-11-24 01:48:15,172 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 35.333333333333336) internal successors, (106), 3 states have internal predecessors, (106), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:15,173 INFO L276 IsEmpty]: Start isEmpty. Operand 4245 states and 7386 transitions. [2024-11-24 01:48:15,209 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 159 [2024-11-24 01:48:15,209 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:15,210 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:15,210 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2024-11-24 01:48:15,210 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:15,211 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:15,211 INFO L85 PathProgramCache]: Analyzing trace with hash 1149477028, now seen corresponding path program 1 times [2024-11-24 01:48:15,212 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:15,212 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1461035879] [2024-11-24 01:48:15,212 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:15,212 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:15,252 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:15,310 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:15,310 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:15,310 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1461035879] [2024-11-24 01:48:15,311 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1461035879] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:15,311 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:15,311 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:15,311 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [852952605] [2024-11-24 01:48:15,311 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:15,312 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:15,312 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:15,312 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:15,313 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:15,313 INFO L87 Difference]: Start difference. First operand 4245 states and 7386 transitions. Second operand has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:15,639 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:15,639 INFO L93 Difference]: Finished difference Result 10520 states and 18406 transitions. [2024-11-24 01:48:15,639 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:15,640 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 158 [2024-11-24 01:48:15,640 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:15,715 INFO L225 Difference]: With dead ends: 10520 [2024-11-24 01:48:15,715 INFO L226 Difference]: Without dead ends: 6931 [2024-11-24 01:48:15,736 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:15,737 INFO L435 NwaCegarLoop]: 622 mSDtfsCounter, 116 mSDsluCounter, 607 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1229 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:15,737 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1229 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:15,746 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 6931 states. [2024-11-24 01:48:16,238 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 6931 to 6923. [2024-11-24 01:48:16,261 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 6923 states, 5634 states have (on average 1.6750088746893859) internal successors, (9437), 5642 states have internal predecessors, (9437), 1256 states have call successors, (1256), 28 states have call predecessors, (1256), 32 states have return successors, (1373), 1254 states have call predecessors, (1373), 1255 states have call successors, (1373) [2024-11-24 01:48:16,302 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6923 states to 6923 states and 12066 transitions. [2024-11-24 01:48:16,306 INFO L78 Accepts]: Start accepts. Automaton has 6923 states and 12066 transitions. Word has length 158 [2024-11-24 01:48:16,307 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:16,307 INFO L471 AbstractCegarLoop]: Abstraction has 6923 states and 12066 transitions. [2024-11-24 01:48:16,307 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:16,307 INFO L276 IsEmpty]: Start isEmpty. Operand 6923 states and 12066 transitions. [2024-11-24 01:48:16,351 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 179 [2024-11-24 01:48:16,351 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:16,352 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:16,352 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2024-11-24 01:48:16,352 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:16,353 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:16,353 INFO L85 PathProgramCache]: Analyzing trace with hash -657147856, now seen corresponding path program 1 times [2024-11-24 01:48:16,353 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:16,353 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1216679896] [2024-11-24 01:48:16,353 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:16,353 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:16,394 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:16,457 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 01:48:16,457 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:16,457 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1216679896] [2024-11-24 01:48:16,457 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1216679896] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:16,457 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:16,457 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:16,458 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [235877977] [2024-11-24 01:48:16,458 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:16,458 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:16,458 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:16,459 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:16,459 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:16,460 INFO L87 Difference]: Start difference. First operand 6923 states and 12066 transitions. Second operand has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:17,073 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:17,073 INFO L93 Difference]: Finished difference Result 17527 states and 30734 transitions. [2024-11-24 01:48:17,073 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:17,074 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 178 [2024-11-24 01:48:17,074 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:17,170 INFO L225 Difference]: With dead ends: 17527 [2024-11-24 01:48:17,170 INFO L226 Difference]: Without dead ends: 11621 [2024-11-24 01:48:17,206 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:17,207 INFO L435 NwaCegarLoop]: 609 mSDtfsCounter, 114 mSDsluCounter, 603 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 132 SdHoareTripleChecker+Valid, 1212 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:17,208 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [132 Valid, 1212 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:17,223 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 11621 states. [2024-11-24 01:48:18,078 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 11621 to 11613. [2024-11-24 01:48:18,099 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11613 states, 9502 states have (on average 1.6755419911597558) internal successors, (15921), 9510 states have internal predecessors, (15921), 2078 states have call successors, (2078), 28 states have call predecessors, (2078), 32 states have return successors, (2273), 2076 states have call predecessors, (2273), 2077 states have call successors, (2273) [2024-11-24 01:48:18,167 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11613 states to 11613 states and 20272 transitions. [2024-11-24 01:48:18,173 INFO L78 Accepts]: Start accepts. Automaton has 11613 states and 20272 transitions. Word has length 178 [2024-11-24 01:48:18,174 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:18,174 INFO L471 AbstractCegarLoop]: Abstraction has 11613 states and 20272 transitions. [2024-11-24 01:48:18,174 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.0) internal successors, (108), 3 states have internal predecessors, (108), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:18,174 INFO L276 IsEmpty]: Start isEmpty. Operand 11613 states and 20272 transitions. [2024-11-24 01:48:18,245 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 161 [2024-11-24 01:48:18,245 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:18,246 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:18,246 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2024-11-24 01:48:18,246 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:18,247 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:18,247 INFO L85 PathProgramCache]: Analyzing trace with hash 943058470, now seen corresponding path program 1 times [2024-11-24 01:48:18,247 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:18,247 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2135201297] [2024-11-24 01:48:18,247 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:18,247 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:18,285 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:18,346 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:18,346 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:18,346 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2135201297] [2024-11-24 01:48:18,346 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2135201297] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:18,346 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:18,347 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:18,347 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [657574365] [2024-11-24 01:48:18,347 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:18,347 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:18,347 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:18,349 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:18,349 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:18,353 INFO L87 Difference]: Start difference. First operand 11613 states and 20272 transitions. Second operand has 3 states, 3 states have (on average 34.0) internal successors, (102), 3 states have internal predecessors, (102), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:19,052 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:19,053 INFO L93 Difference]: Finished difference Result 27722 states and 48340 transitions. [2024-11-24 01:48:19,053 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:19,054 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.0) internal successors, (102), 3 states have internal predecessors, (102), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 160 [2024-11-24 01:48:19,055 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:19,167 INFO L225 Difference]: With dead ends: 27722 [2024-11-24 01:48:19,168 INFO L226 Difference]: Without dead ends: 18048 [2024-11-24 01:48:19,214 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:19,216 INFO L435 NwaCegarLoop]: 609 mSDtfsCounter, 112 mSDsluCounter, 575 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 130 SdHoareTripleChecker+Valid, 1184 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:19,216 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [130 Valid, 1184 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:19,238 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18048 states. [2024-11-24 01:48:20,444 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18048 to 18040. [2024-11-24 01:48:20,480 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18040 states, 14726 states have (on average 1.651568654081217) internal successors, (24321), 14734 states have internal predecessors, (24321), 3281 states have call successors, (3281), 28 states have call predecessors, (3281), 32 states have return successors, (3620), 3279 states have call predecessors, (3620), 3280 states have call successors, (3620) [2024-11-24 01:48:20,591 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18040 states to 18040 states and 31222 transitions. [2024-11-24 01:48:20,602 INFO L78 Accepts]: Start accepts. Automaton has 18040 states and 31222 transitions. Word has length 160 [2024-11-24 01:48:20,603 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:20,603 INFO L471 AbstractCegarLoop]: Abstraction has 18040 states and 31222 transitions. [2024-11-24 01:48:20,603 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.0) internal successors, (102), 3 states have internal predecessors, (102), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:20,603 INFO L276 IsEmpty]: Start isEmpty. Operand 18040 states and 31222 transitions. [2024-11-24 01:48:20,710 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 181 [2024-11-24 01:48:20,712 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:20,713 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:20,713 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2024-11-24 01:48:20,713 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:20,714 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:20,714 INFO L85 PathProgramCache]: Analyzing trace with hash -855526385, now seen corresponding path program 1 times [2024-11-24 01:48:20,714 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:20,714 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1042478781] [2024-11-24 01:48:20,714 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:20,714 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:20,788 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:20,913 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 01:48:20,913 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:20,913 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1042478781] [2024-11-24 01:48:20,913 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1042478781] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:20,913 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:20,914 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:20,915 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [937113169] [2024-11-24 01:48:20,915 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:20,918 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:20,918 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:20,919 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:20,919 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:20,919 INFO L87 Difference]: Start difference. First operand 18040 states and 31222 transitions. Second operand has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:22,331 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:22,331 INFO L93 Difference]: Finished difference Result 47704 states and 82864 transitions. [2024-11-24 01:48:22,332 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:22,332 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 180 [2024-11-24 01:48:22,332 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:22,503 INFO L225 Difference]: With dead ends: 47704 [2024-11-24 01:48:22,504 INFO L226 Difference]: Without dead ends: 32181 [2024-11-24 01:48:22,555 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:22,556 INFO L435 NwaCegarLoop]: 609 mSDtfsCounter, 110 mSDsluCounter, 603 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1212 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:22,556 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1212 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:22,588 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 32181 states. [2024-11-24 01:48:24,132 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 32181 to 32173. [2024-11-24 01:48:24,183 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32173 states, 26409 states have (on average 1.6481123859290394) internal successors, (43525), 26417 states have internal predecessors, (43525), 5731 states have call successors, (5731), 28 states have call predecessors, (5731), 32 states have return successors, (6344), 5729 states have call predecessors, (6344), 5730 states have call successors, (6344) [2024-11-24 01:48:24,310 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32173 states to 32173 states and 55600 transitions. [2024-11-24 01:48:24,326 INFO L78 Accepts]: Start accepts. Automaton has 32173 states and 55600 transitions. Word has length 180 [2024-11-24 01:48:24,327 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:24,327 INFO L471 AbstractCegarLoop]: Abstraction has 32173 states and 55600 transitions. [2024-11-24 01:48:24,327 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 36.666666666666664) internal successors, (110), 3 states have internal predecessors, (110), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:24,327 INFO L276 IsEmpty]: Start isEmpty. Operand 32173 states and 55600 transitions. [2024-11-24 01:48:24,429 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 163 [2024-11-24 01:48:24,429 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:24,429 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:24,430 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2024-11-24 01:48:24,430 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:24,430 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:24,430 INFO L85 PathProgramCache]: Analyzing trace with hash -1478884672, now seen corresponding path program 1 times [2024-11-24 01:48:24,430 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:24,431 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1585497122] [2024-11-24 01:48:24,431 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:24,431 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:24,616 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:24,669 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 01:48:24,669 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:24,669 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1585497122] [2024-11-24 01:48:24,669 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1585497122] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:24,669 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:24,670 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:24,670 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1720846430] [2024-11-24 01:48:24,670 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:24,671 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:24,671 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:24,671 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:24,671 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:24,671 INFO L87 Difference]: Start difference. First operand 32173 states and 55600 transitions. Second operand has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:27,391 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:27,391 INFO L93 Difference]: Finished difference Result 87766 states and 152131 transitions. [2024-11-24 01:48:27,391 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:27,392 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) Word has length 162 [2024-11-24 01:48:27,392 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:27,856 INFO L225 Difference]: With dead ends: 87766 [2024-11-24 01:48:27,856 INFO L226 Difference]: Without dead ends: 58949 [2024-11-24 01:48:28,139 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:28,139 INFO L435 NwaCegarLoop]: 619 mSDtfsCounter, 108 mSDsluCounter, 604 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 126 SdHoareTripleChecker+Valid, 1223 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:28,140 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [126 Valid, 1223 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:28,188 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 58949 states. [2024-11-24 01:48:31,084 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 58949 to 58941. [2024-11-24 01:48:31,183 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 58941 states, 48664 states have (on average 1.6434941640637843) internal successors, (79979), 48672 states have internal predecessors, (79979), 10244 states have call successors, (10244), 28 states have call predecessors, (10244), 32 states have return successors, (11389), 10242 states have call predecessors, (11389), 10243 states have call successors, (11389) [2024-11-24 01:48:31,523 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 58941 states to 58941 states and 101612 transitions. [2024-11-24 01:48:31,555 INFO L78 Accepts]: Start accepts. Automaton has 58941 states and 101612 transitions. Word has length 162 [2024-11-24 01:48:31,555 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:31,556 INFO L471 AbstractCegarLoop]: Abstraction has 58941 states and 101612 transitions. [2024-11-24 01:48:31,556 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.666666666666664) internal successors, (104), 3 states have internal predecessors, (104), 2 states have call successors, (21), 2 states have call predecessors, (21), 1 states have return successors, (18), 2 states have call predecessors, (18), 2 states have call successors, (18) [2024-11-24 01:48:31,556 INFO L276 IsEmpty]: Start isEmpty. Operand 58941 states and 101612 transitions. [2024-11-24 01:48:31,753 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 183 [2024-11-24 01:48:31,753 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:31,753 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:31,754 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2024-11-24 01:48:31,754 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:31,754 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:31,755 INFO L85 PathProgramCache]: Analyzing trace with hash -1698554257, now seen corresponding path program 1 times [2024-11-24 01:48:31,755 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:31,755 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1375488692] [2024-11-24 01:48:31,755 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:31,756 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:31,823 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:32,176 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 01:48:32,176 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:32,176 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1375488692] [2024-11-24 01:48:32,177 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1375488692] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 01:48:32,177 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 01:48:32,177 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 01:48:32,177 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [498524427] [2024-11-24 01:48:32,177 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 01:48:32,178 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 01:48:32,178 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:32,179 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 01:48:32,180 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:32,180 INFO L87 Difference]: Start difference. First operand 58941 states and 101612 transitions. Second operand has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:34,814 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 01:48:34,815 INFO L93 Difference]: Finished difference Result 110338 states and 190621 transitions. [2024-11-24 01:48:34,815 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 01:48:34,815 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) Word has length 182 [2024-11-24 01:48:34,816 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 01:48:35,585 INFO L225 Difference]: With dead ends: 110338 [2024-11-24 01:48:35,585 INFO L226 Difference]: Without dead ends: 110119 [2024-11-24 01:48:35,630 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 01:48:35,634 INFO L435 NwaCegarLoop]: 611 mSDtfsCounter, 103 mSDsluCounter, 607 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 1218 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 01:48:35,634 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 1218 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 01:48:35,711 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110119 states. [2024-11-24 01:48:40,224 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110119 to 110111. [2024-11-24 01:48:40,347 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 110111 states, 91466 states have (on average 1.6377451730697745) internal successors, (149798), 91474 states have internal predecessors, (149798), 18612 states have call successors, (18612), 28 states have call predecessors, (18612), 32 states have return successors, (20803), 18610 states have call predecessors, (20803), 18611 states have call successors, (20803) [2024-11-24 01:48:41,350 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 110111 states to 110111 states and 189213 transitions. [2024-11-24 01:48:41,416 INFO L78 Accepts]: Start accepts. Automaton has 110111 states and 189213 transitions. Word has length 182 [2024-11-24 01:48:41,417 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 01:48:41,417 INFO L471 AbstractCegarLoop]: Abstraction has 110111 states and 189213 transitions. [2024-11-24 01:48:41,417 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 37.333333333333336) internal successors, (112), 3 states have internal predecessors, (112), 2 states have call successors, (24), 2 states have call predecessors, (24), 1 states have return successors, (21), 2 states have call predecessors, (21), 2 states have call successors, (21) [2024-11-24 01:48:41,420 INFO L276 IsEmpty]: Start isEmpty. Operand 110111 states and 189213 transitions. [2024-11-24 01:48:41,613 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 165 [2024-11-24 01:48:41,613 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 01:48:41,614 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 01:48:41,614 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2024-11-24 01:48:41,614 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 01:48:41,615 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 01:48:41,615 INFO L85 PathProgramCache]: Analyzing trace with hash -1979831105, now seen corresponding path program 1 times [2024-11-24 01:48:41,615 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 01:48:41,616 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [207756775] [2024-11-24 01:48:41,616 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:41,616 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 01:48:41,672 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:42,233 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-24 01:48:42,233 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 01:48:42,233 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [207756775] [2024-11-24 01:48:42,234 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [207756775] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 01:48:42,234 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1976755379] [2024-11-24 01:48:42,234 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 01:48:42,234 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 01:48:42,234 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 01:48:42,236 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 01:48:42,241 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_f0af8bc8-829d-4f7f-b585-3151c01e178b/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-11-24 01:48:42,708 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 01:48:42,713 INFO L256 TraceCheckSpWp]: Trace formula consists of 1250 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-24 01:48:42,718 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 01:48:43,064 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 18 proven. 6 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2024-11-24 01:48:43,064 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-24 01:48:43,686 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-24 01:48:43,686 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1976755379] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-24 01:48:43,686 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-24 01:48:43,686 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 9, 9] total 28 [2024-11-24 01:48:43,687 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [886143660] [2024-11-24 01:48:43,687 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-24 01:48:43,688 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2024-11-24 01:48:43,688 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 01:48:43,689 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2024-11-24 01:48:43,690 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=68, Invalid=688, Unknown=0, NotChecked=0, Total=756 [2024-11-24 01:48:43,691 INFO L87 Difference]: Start difference. First operand 110111 states and 189213 transitions. Second operand has 28 states, 26 states have (on average 10.038461538461538) internal successors, (261), 24 states have internal predecessors, (261), 9 states have call successors, (54), 8 states have call predecessors, (54), 12 states have return successors, (47), 11 states have call predecessors, (47), 9 states have call successors, (47)