./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/email_spec7_product29.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 6497de01 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/email_spec7_product29.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 2586c6a9c5639b30d1f21b288976c8c026e2c567887902cc846265d5507c0a62 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-6497de0 [2024-11-24 00:27:09,279 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-24 00:27:09,371 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-24 00:27:09,378 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-24 00:27:09,378 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-24 00:27:09,402 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-24 00:27:09,403 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-24 00:27:09,403 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-24 00:27:09,404 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-24 00:27:09,404 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-24 00:27:09,404 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-24 00:27:09,404 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-24 00:27:09,405 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-24 00:27:09,405 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-24 00:27:09,405 INFO L153 SettingsManager]: * Use SBE=true [2024-11-24 00:27:09,405 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-24 00:27:09,405 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-24 00:27:09,405 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-24 00:27:09,405 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2024-11-24 00:27:09,406 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-24 00:27:09,407 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-24 00:27:09,407 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-24 00:27:09,407 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-24 00:27:09,407 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-24 00:27:09,407 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 00:27:09,408 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-24 00:27:09,408 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-24 00:27:09,408 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-24 00:27:09,408 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-24 00:27:09,408 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 00:27:09,408 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-24 00:27:09,408 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Compute procedure contracts=false [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-24 00:27:09,409 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-24 00:27:09,411 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 2586c6a9c5639b30d1f21b288976c8c026e2c567887902cc846265d5507c0a62 [2024-11-24 00:27:09,697 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-24 00:27:09,706 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-24 00:27:09,709 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-24 00:27:09,711 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-24 00:27:09,711 INFO L274 PluginConnector]: CDTParser initialized [2024-11-24 00:27:09,714 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/../../sv-benchmarks/c/product-lines/email_spec7_product29.cil.c [2024-11-24 00:27:12,755 INFO L533 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/data/2c5a0a5cd/b81ce629c7cc49eb8fb91c44f877f051/FLAGde61e7ec2 [2024-11-24 00:27:13,170 INFO L384 CDTParser]: Found 1 translation units. [2024-11-24 00:27:13,171 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/sv-benchmarks/c/product-lines/email_spec7_product29.cil.c [2024-11-24 00:27:13,198 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/data/2c5a0a5cd/b81ce629c7cc49eb8fb91c44f877f051/FLAGde61e7ec2 [2024-11-24 00:27:13,225 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/data/2c5a0a5cd/b81ce629c7cc49eb8fb91c44f877f051 [2024-11-24 00:27:13,227 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-24 00:27:13,231 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-24 00:27:13,233 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-24 00:27:13,233 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-24 00:27:13,237 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-24 00:27:13,238 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 24.11 12:27:13" (1/1) ... [2024-11-24 00:27:13,242 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@217bf978 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:13, skipping insertion in model container [2024-11-24 00:27:13,242 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 24.11 12:27:13" (1/1) ... [2024-11-24 00:27:13,323 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-24 00:27:13,758 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/sv-benchmarks/c/product-lines/email_spec7_product29.cil.c[16949,16962] [2024-11-24 00:27:14,022 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-24 00:27:14,039 INFO L200 MainTranslator]: Completed pre-run [2024-11-24 00:27:14,052 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [48] [2024-11-24 00:27:14,053 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [368] [2024-11-24 00:27:14,053 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [734] [2024-11-24 00:27:14,054 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [743] [2024-11-24 00:27:14,055 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptVerify_spec.i","") [959] [2024-11-24 00:27:14,055 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [978] [2024-11-24 00:27:14,055 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [1361] [2024-11-24 00:27:14,055 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [2425] [2024-11-24 00:27:14,057 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [2563] [2024-11-24 00:27:14,057 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2580] [2024-11-24 00:27:14,058 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [2977] [2024-11-24 00:27:14,106 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/sv-benchmarks/c/product-lines/email_spec7_product29.cil.c[16949,16962] [2024-11-24 00:27:14,230 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-24 00:27:14,271 INFO L204 MainTranslator]: Completed translation [2024-11-24 00:27:14,272 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14 WrapperNode [2024-11-24 00:27:14,272 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-24 00:27:14,273 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-24 00:27:14,273 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-24 00:27:14,274 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-24 00:27:14,281 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,321 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,385 INFO L138 Inliner]: procedures = 131, calls = 210, calls flagged for inlining = 55, calls inlined = 47, statements flattened = 911 [2024-11-24 00:27:14,386 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-24 00:27:14,386 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-24 00:27:14,386 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-24 00:27:14,387 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-24 00:27:14,397 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,397 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,408 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,458 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2024-11-24 00:27:14,459 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,459 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,475 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,477 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,486 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,491 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,494 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,502 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-24 00:27:14,503 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-24 00:27:14,503 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-24 00:27:14,503 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-24 00:27:14,504 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (1/1) ... [2024-11-24 00:27:14,514 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-24 00:27:14,537 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:14,552 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-24 00:27:14,560 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-24 00:27:14,611 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2024-11-24 00:27:14,612 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2024-11-24 00:27:14,613 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2024-11-24 00:27:14,613 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2024-11-24 00:27:14,613 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2024-11-24 00:27:14,614 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2024-11-24 00:27:14,614 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2024-11-24 00:27:14,614 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2024-11-24 00:27:14,615 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2024-11-24 00:27:14,615 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2024-11-24 00:27:14,615 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2024-11-24 00:27:14,615 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2024-11-24 00:27:14,615 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2024-11-24 00:27:14,615 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2024-11-24 00:27:14,616 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2024-11-24 00:27:14,616 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2024-11-24 00:27:14,618 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2024-11-24 00:27:14,619 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2024-11-24 00:27:14,619 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2024-11-24 00:27:14,620 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2024-11-24 00:27:14,620 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2024-11-24 00:27:14,621 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2024-11-24 00:27:14,621 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2024-11-24 00:27:14,621 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2024-11-24 00:27:14,621 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2024-11-24 00:27:14,621 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2024-11-24 00:27:14,622 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-24 00:27:14,622 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-11-24 00:27:14,622 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-11-24 00:27:14,622 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-11-24 00:27:14,622 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2024-11-24 00:27:14,625 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2024-11-24 00:27:14,625 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2024-11-24 00:27:14,625 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2024-11-24 00:27:14,625 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-24 00:27:14,625 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-24 00:27:14,893 INFO L234 CfgBuilder]: Building ICFG [2024-11-24 00:27:14,897 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-24 00:27:16,266 INFO L? ?]: Removed 499 outVars from TransFormulas that were not future-live. [2024-11-24 00:27:16,267 INFO L283 CfgBuilder]: Performing block encoding [2024-11-24 00:27:16,297 INFO L307 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-24 00:27:16,298 INFO L312 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-24 00:27:16,298 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 24.11 12:27:16 BoogieIcfgContainer [2024-11-24 00:27:16,298 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-24 00:27:16,305 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-24 00:27:16,307 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-24 00:27:16,312 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-24 00:27:16,313 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 24.11 12:27:13" (1/3) ... [2024-11-24 00:27:16,314 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@111abb76 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 24.11 12:27:16, skipping insertion in model container [2024-11-24 00:27:16,314 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 24.11 12:27:14" (2/3) ... [2024-11-24 00:27:16,315 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@111abb76 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 24.11 12:27:16, skipping insertion in model container [2024-11-24 00:27:16,315 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 24.11 12:27:16" (3/3) ... [2024-11-24 00:27:16,318 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec7_product29.cil.c [2024-11-24 00:27:16,335 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-24 00:27:16,337 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec7_product29.cil.c that has 29 procedures, 404 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2024-11-24 00:27:16,435 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-24 00:27:16,453 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@bc2d6e1, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-24 00:27:16,454 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-24 00:27:16,460 INFO L276 IsEmpty]: Start isEmpty. Operand has 404 states, 312 states have (on average 1.5576923076923077) internal successors, (486), 317 states have internal predecessors, (486), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (62), 61 states have call predecessors, (62), 62 states have call successors, (62) [2024-11-24 00:27:16,490 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-24 00:27:16,491 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:16,492 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:16,492 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:16,500 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:16,500 INFO L85 PathProgramCache]: Analyzing trace with hash -1182576154, now seen corresponding path program 1 times [2024-11-24 00:27:16,508 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:16,509 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [632791644] [2024-11-24 00:27:16,509 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:16,510 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:16,756 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:17,545 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 00:27:17,545 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:17,545 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [632791644] [2024-11-24 00:27:17,546 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [632791644] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:17,549 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [375920284] [2024-11-24 00:27:17,549 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:17,549 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:17,549 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:17,556 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:17,558 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-24 00:27:18,012 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:18,019 INFO L256 TraceCheckSpWp]: Trace formula consists of 1123 conjuncts, 1 conjuncts are in the unsatisfiable core [2024-11-24 00:27:18,030 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:18,071 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-24 00:27:18,072 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 00:27:18,072 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [375920284] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:18,072 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 00:27:18,072 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [5] total 5 [2024-11-24 00:27:18,075 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1114616091] [2024-11-24 00:27:18,076 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:18,082 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-24 00:27:18,082 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:18,107 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-24 00:27:18,108 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 00:27:18,112 INFO L87 Difference]: Start difference. First operand has 404 states, 312 states have (on average 1.5576923076923077) internal successors, (486), 317 states have internal predecessors, (486), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (62), 61 states have call predecessors, (62), 62 states have call successors, (62) Second operand has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:18,212 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:18,213 INFO L93 Difference]: Finished difference Result 621 states and 919 transitions. [2024-11-24 00:27:18,215 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-24 00:27:18,216 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 129 [2024-11-24 00:27:18,218 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:18,238 INFO L225 Difference]: With dead ends: 621 [2024-11-24 00:27:18,239 INFO L226 Difference]: Without dead ends: 397 [2024-11-24 00:27:18,249 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 133 GetRequests, 130 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 00:27:18,253 INFO L435 NwaCegarLoop]: 606 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 606 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:18,256 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 606 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:18,275 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 397 states. [2024-11-24 00:27:18,347 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 397 to 397. [2024-11-24 00:27:18,349 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 397 states, 306 states have (on average 1.5522875816993464) internal successors, (475), 310 states have internal predecessors, (475), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (61), 60 states have call predecessors, (61), 61 states have call successors, (61) [2024-11-24 00:27:18,367 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 397 states to 397 states and 598 transitions. [2024-11-24 00:27:18,371 INFO L78 Accepts]: Start accepts. Automaton has 397 states and 598 transitions. Word has length 129 [2024-11-24 00:27:18,372 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:18,372 INFO L471 AbstractCegarLoop]: Abstraction has 397 states and 598 transitions. [2024-11-24 00:27:18,373 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:18,373 INFO L276 IsEmpty]: Start isEmpty. Operand 397 states and 598 transitions. [2024-11-24 00:27:18,384 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-24 00:27:18,385 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:18,385 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:18,398 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-24 00:27:18,585 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-11-24 00:27:18,586 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:18,586 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:18,587 INFO L85 PathProgramCache]: Analyzing trace with hash 1531634080, now seen corresponding path program 1 times [2024-11-24 00:27:18,587 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:18,587 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1626028694] [2024-11-24 00:27:18,587 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:18,587 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:18,668 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:19,080 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-24 00:27:19,080 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:19,080 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1626028694] [2024-11-24 00:27:19,080 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1626028694] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:19,080 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1293837271] [2024-11-24 00:27:19,080 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:19,081 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:19,081 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:19,085 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:19,088 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-24 00:27:19,502 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:19,506 INFO L256 TraceCheckSpWp]: Trace formula consists of 1123 conjuncts, 2 conjuncts are in the unsatisfiable core [2024-11-24 00:27:19,513 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:19,554 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-24 00:27:19,554 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 00:27:19,554 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1293837271] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:19,554 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 00:27:19,554 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-24 00:27:19,559 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1309482914] [2024-11-24 00:27:19,559 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:19,560 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:19,560 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:19,560 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:19,561 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 00:27:19,561 INFO L87 Difference]: Start difference. First operand 397 states and 598 transitions. Second operand has 3 states, 3 states have (on average 23.666666666666668) internal successors, (71), 3 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:19,632 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:19,632 INFO L93 Difference]: Finished difference Result 610 states and 896 transitions. [2024-11-24 00:27:19,634 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:19,634 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 23.666666666666668) internal successors, (71), 3 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 129 [2024-11-24 00:27:19,635 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:19,642 INFO L225 Difference]: With dead ends: 610 [2024-11-24 00:27:19,642 INFO L226 Difference]: Without dead ends: 399 [2024-11-24 00:27:19,643 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 133 GetRequests, 129 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 00:27:19,644 INFO L435 NwaCegarLoop]: 596 mSDtfsCounter, 1 mSDsluCounter, 594 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 1190 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:19,644 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 1190 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:19,647 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 399 states. [2024-11-24 00:27:19,680 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 399 to 398. [2024-11-24 00:27:19,681 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 398 states, 307 states have (on average 1.5504885993485342) internal successors, (476), 311 states have internal predecessors, (476), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (61), 60 states have call predecessors, (61), 61 states have call successors, (61) [2024-11-24 00:27:19,688 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 398 states to 398 states and 599 transitions. [2024-11-24 00:27:19,691 INFO L78 Accepts]: Start accepts. Automaton has 398 states and 599 transitions. Word has length 129 [2024-11-24 00:27:19,692 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:19,693 INFO L471 AbstractCegarLoop]: Abstraction has 398 states and 599 transitions. [2024-11-24 00:27:19,693 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 23.666666666666668) internal successors, (71), 3 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:19,693 INFO L276 IsEmpty]: Start isEmpty. Operand 398 states and 599 transitions. [2024-11-24 00:27:19,697 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 154 [2024-11-24 00:27:19,697 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:19,697 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:19,709 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-24 00:27:19,903 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:19,903 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:19,903 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:19,904 INFO L85 PathProgramCache]: Analyzing trace with hash -296121297, now seen corresponding path program 1 times [2024-11-24 00:27:19,904 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:19,904 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [835337988] [2024-11-24 00:27:19,904 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:19,904 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:19,957 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:20,278 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 43 trivial. 0 not checked. [2024-11-24 00:27:20,278 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:20,278 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [835337988] [2024-11-24 00:27:20,278 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [835337988] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:20,279 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1060276381] [2024-11-24 00:27:20,279 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:20,279 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:20,279 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:20,284 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:20,285 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-24 00:27:20,691 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:20,698 INFO L256 TraceCheckSpWp]: Trace formula consists of 1212 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-24 00:27:20,703 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:20,733 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-24 00:27:20,733 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 00:27:20,733 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1060276381] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:20,733 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 00:27:20,733 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-24 00:27:20,733 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2115286938] [2024-11-24 00:27:20,733 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:20,734 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:20,734 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:20,737 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:20,737 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 00:27:20,738 INFO L87 Difference]: Start difference. First operand 398 states and 599 transitions. Second operand has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-24 00:27:20,822 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:20,822 INFO L93 Difference]: Finished difference Result 839 states and 1282 transitions. [2024-11-24 00:27:20,823 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:20,823 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 153 [2024-11-24 00:27:20,823 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:20,829 INFO L225 Difference]: With dead ends: 839 [2024-11-24 00:27:20,830 INFO L226 Difference]: Without dead ends: 467 [2024-11-24 00:27:20,831 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 157 GetRequests, 153 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-24 00:27:20,835 INFO L435 NwaCegarLoop]: 611 mSDtfsCounter, 126 mSDsluCounter, 550 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1161 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:20,835 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1161 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:20,837 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 467 states. [2024-11-24 00:27:20,872 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 467 to 459. [2024-11-24 00:27:20,874 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 459 states, 354 states have (on average 1.5706214689265536) internal successors, (556), 358 states have internal predecessors, (556), 76 states have call successors, (76), 28 states have call predecessors, (76), 28 states have return successors, (75), 74 states have call predecessors, (75), 75 states have call successors, (75) [2024-11-24 00:27:20,884 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 459 states to 459 states and 707 transitions. [2024-11-24 00:27:20,884 INFO L78 Accepts]: Start accepts. Automaton has 459 states and 707 transitions. Word has length 153 [2024-11-24 00:27:20,885 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:20,885 INFO L471 AbstractCegarLoop]: Abstraction has 459 states and 707 transitions. [2024-11-24 00:27:20,885 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-24 00:27:20,885 INFO L276 IsEmpty]: Start isEmpty. Operand 459 states and 707 transitions. [2024-11-24 00:27:20,922 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 136 [2024-11-24 00:27:20,922 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:20,922 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:20,935 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-24 00:27:21,123 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:21,123 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:21,124 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:21,124 INFO L85 PathProgramCache]: Analyzing trace with hash 425050961, now seen corresponding path program 1 times [2024-11-24 00:27:21,124 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:21,124 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1722539403] [2024-11-24 00:27:21,124 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:21,124 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:21,170 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:21,372 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-24 00:27:21,372 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:21,372 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1722539403] [2024-11-24 00:27:21,372 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1722539403] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:21,373 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [409422438] [2024-11-24 00:27:21,373 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:21,373 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:21,373 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:21,375 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:21,379 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-24 00:27:21,762 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:21,768 INFO L256 TraceCheckSpWp]: Trace formula consists of 1139 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-24 00:27:21,776 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:21,855 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-24 00:27:21,855 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 00:27:21,855 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [409422438] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:21,855 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 00:27:21,856 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8 [2024-11-24 00:27:21,856 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [638072916] [2024-11-24 00:27:21,856 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:21,856 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 00:27:21,856 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:21,857 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 00:27:21,857 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-24 00:27:21,857 INFO L87 Difference]: Start difference. First operand 459 states and 707 transitions. Second operand has 5 states, 4 states have (on average 21.5) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-24 00:27:21,980 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:21,980 INFO L93 Difference]: Finished difference Result 909 states and 1404 transitions. [2024-11-24 00:27:21,981 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 00:27:21,981 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 21.5) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) Word has length 135 [2024-11-24 00:27:21,981 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:21,987 INFO L225 Difference]: With dead ends: 909 [2024-11-24 00:27:21,987 INFO L226 Difference]: Without dead ends: 461 [2024-11-24 00:27:21,989 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 139 GetRequests, 133 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-24 00:27:21,992 INFO L435 NwaCegarLoop]: 590 mSDtfsCounter, 2 mSDsluCounter, 1759 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2349 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:21,995 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2349 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:21,996 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 461 states. [2024-11-24 00:27:22,032 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 461 to 461. [2024-11-24 00:27:22,033 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 461 states, 355 states have (on average 1.5690140845070422) internal successors, (557), 360 states have internal predecessors, (557), 76 states have call successors, (76), 28 states have call predecessors, (76), 29 states have return successors, (77), 74 states have call predecessors, (77), 75 states have call successors, (77) [2024-11-24 00:27:22,040 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 461 states to 461 states and 710 transitions. [2024-11-24 00:27:22,041 INFO L78 Accepts]: Start accepts. Automaton has 461 states and 710 transitions. Word has length 135 [2024-11-24 00:27:22,041 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:22,041 INFO L471 AbstractCegarLoop]: Abstraction has 461 states and 710 transitions. [2024-11-24 00:27:22,041 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 21.5) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-24 00:27:22,041 INFO L276 IsEmpty]: Start isEmpty. Operand 461 states and 710 transitions. [2024-11-24 00:27:22,048 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2024-11-24 00:27:22,048 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:22,049 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:22,060 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-11-24 00:27:22,249 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:22,249 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:22,250 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:22,250 INFO L85 PathProgramCache]: Analyzing trace with hash 1572092482, now seen corresponding path program 1 times [2024-11-24 00:27:22,250 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:22,250 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [121481379] [2024-11-24 00:27:22,250 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:22,250 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:22,287 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:22,482 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-24 00:27:22,482 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:22,483 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [121481379] [2024-11-24 00:27:22,483 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [121481379] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:22,483 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2117696042] [2024-11-24 00:27:22,483 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:22,483 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:22,483 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:22,485 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:22,487 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-24 00:27:22,902 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:22,907 INFO L256 TraceCheckSpWp]: Trace formula consists of 1140 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-24 00:27:22,913 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:22,991 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-24 00:27:22,991 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-24 00:27:22,991 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2117696042] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:22,992 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-24 00:27:22,992 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11 [2024-11-24 00:27:22,996 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2036360991] [2024-11-24 00:27:22,996 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:22,996 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 00:27:22,996 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:22,997 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 00:27:22,997 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-24 00:27:22,997 INFO L87 Difference]: Start difference. First operand 461 states and 710 transitions. Second operand has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-24 00:27:23,106 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:23,106 INFO L93 Difference]: Finished difference Result 911 states and 1409 transitions. [2024-11-24 00:27:23,108 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 00:27:23,108 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) Word has length 136 [2024-11-24 00:27:23,108 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:23,114 INFO L225 Difference]: With dead ends: 911 [2024-11-24 00:27:23,114 INFO L226 Difference]: Without dead ends: 463 [2024-11-24 00:27:23,117 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 143 GetRequests, 134 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-24 00:27:23,118 INFO L435 NwaCegarLoop]: 588 mSDtfsCounter, 2 mSDsluCounter, 1747 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2335 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:23,118 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2335 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 00:27:23,120 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 463 states. [2024-11-24 00:27:23,155 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 463 to 463. [2024-11-24 00:27:23,161 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 463 states, 356 states have (on average 1.5674157303370786) internal successors, (558), 362 states have internal predecessors, (558), 76 states have call successors, (76), 28 states have call predecessors, (76), 30 states have return successors, (82), 74 states have call predecessors, (82), 75 states have call successors, (82) [2024-11-24 00:27:23,167 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 463 states to 463 states and 716 transitions. [2024-11-24 00:27:23,169 INFO L78 Accepts]: Start accepts. Automaton has 463 states and 716 transitions. Word has length 136 [2024-11-24 00:27:23,171 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:23,171 INFO L471 AbstractCegarLoop]: Abstraction has 463 states and 716 transitions. [2024-11-24 00:27:23,171 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-24 00:27:23,171 INFO L276 IsEmpty]: Start isEmpty. Operand 463 states and 716 transitions. [2024-11-24 00:27:23,176 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 138 [2024-11-24 00:27:23,176 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:23,176 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:23,187 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-11-24 00:27:23,381 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:23,381 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:23,382 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:23,382 INFO L85 PathProgramCache]: Analyzing trace with hash -1807925944, now seen corresponding path program 1 times [2024-11-24 00:27:23,383 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:23,383 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1276695267] [2024-11-24 00:27:23,383 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:23,383 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:23,428 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:23,599 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-24 00:27:23,599 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:23,599 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1276695267] [2024-11-24 00:27:23,599 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1276695267] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:23,599 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:23,599 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 00:27:23,599 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1914467608] [2024-11-24 00:27:23,599 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:23,600 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 00:27:23,600 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:23,600 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 00:27:23,600 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 00:27:23,601 INFO L87 Difference]: Start difference. First operand 463 states and 716 transitions. Second operand has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-24 00:27:23,667 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:23,667 INFO L93 Difference]: Finished difference Result 903 states and 1400 transitions. [2024-11-24 00:27:23,668 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 00:27:23,668 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) Word has length 137 [2024-11-24 00:27:23,668 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:23,672 INFO L225 Difference]: With dead ends: 903 [2024-11-24 00:27:23,672 INFO L226 Difference]: Without dead ends: 463 [2024-11-24 00:27:23,674 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 00:27:23,674 INFO L435 NwaCegarLoop]: 591 mSDtfsCounter, 2 mSDsluCounter, 1762 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2353 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:23,674 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2353 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:23,676 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 463 states. [2024-11-24 00:27:23,693 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 463 to 463. [2024-11-24 00:27:23,694 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 463 states, 356 states have (on average 1.5674157303370786) internal successors, (558), 362 states have internal predecessors, (558), 76 states have call successors, (76), 28 states have call predecessors, (76), 30 states have return successors, (81), 74 states have call predecessors, (81), 75 states have call successors, (81) [2024-11-24 00:27:23,698 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 463 states to 463 states and 715 transitions. [2024-11-24 00:27:23,699 INFO L78 Accepts]: Start accepts. Automaton has 463 states and 715 transitions. Word has length 137 [2024-11-24 00:27:23,699 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:23,699 INFO L471 AbstractCegarLoop]: Abstraction has 463 states and 715 transitions. [2024-11-24 00:27:23,699 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-24 00:27:23,699 INFO L276 IsEmpty]: Start isEmpty. Operand 463 states and 715 transitions. [2024-11-24 00:27:23,703 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 158 [2024-11-24 00:27:23,703 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:23,703 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:23,703 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-24 00:27:23,703 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:23,704 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:23,704 INFO L85 PathProgramCache]: Analyzing trace with hash -1964549918, now seen corresponding path program 1 times [2024-11-24 00:27:23,704 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:23,704 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [574910049] [2024-11-24 00:27:23,704 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:23,704 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:23,744 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:23,953 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 43 trivial. 0 not checked. [2024-11-24 00:27:23,953 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:23,953 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [574910049] [2024-11-24 00:27:23,953 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [574910049] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:23,953 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:23,953 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-24 00:27:23,953 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1846733828] [2024-11-24 00:27:23,953 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:23,954 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-24 00:27:23,954 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:23,955 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-24 00:27:23,955 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 00:27:23,955 INFO L87 Difference]: Start difference. First operand 463 states and 715 transitions. Second operand has 5 states, 4 states have (on average 23.0) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) [2024-11-24 00:27:24,033 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:24,033 INFO L93 Difference]: Finished difference Result 905 states and 1403 transitions. [2024-11-24 00:27:24,033 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-24 00:27:24,034 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 23.0) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) Word has length 157 [2024-11-24 00:27:24,035 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:24,043 INFO L225 Difference]: With dead ends: 905 [2024-11-24 00:27:24,043 INFO L226 Difference]: Without dead ends: 465 [2024-11-24 00:27:24,045 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-24 00:27:24,046 INFO L435 NwaCegarLoop]: 592 mSDtfsCounter, 1 mSDsluCounter, 1764 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2356 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:24,046 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2356 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:24,047 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 465 states. [2024-11-24 00:27:24,077 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 465 to 465. [2024-11-24 00:27:24,078 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 465 states, 357 states have (on average 1.5658263305322129) internal successors, (559), 364 states have internal predecessors, (559), 76 states have call successors, (76), 28 states have call predecessors, (76), 31 states have return successors, (83), 74 states have call predecessors, (83), 75 states have call successors, (83) [2024-11-24 00:27:24,084 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 465 states to 465 states and 718 transitions. [2024-11-24 00:27:24,085 INFO L78 Accepts]: Start accepts. Automaton has 465 states and 718 transitions. Word has length 157 [2024-11-24 00:27:24,085 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:24,085 INFO L471 AbstractCegarLoop]: Abstraction has 465 states and 718 transitions. [2024-11-24 00:27:24,085 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 23.0) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) [2024-11-24 00:27:24,086 INFO L276 IsEmpty]: Start isEmpty. Operand 465 states and 718 transitions. [2024-11-24 00:27:24,090 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 159 [2024-11-24 00:27:24,090 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:24,091 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:24,091 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-24 00:27:24,091 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:24,091 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:24,092 INFO L85 PathProgramCache]: Analyzing trace with hash -445032628, now seen corresponding path program 1 times [2024-11-24 00:27:24,092 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:24,092 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1396272465] [2024-11-24 00:27:24,092 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:24,092 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:24,146 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:24,400 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 37 trivial. 0 not checked. [2024-11-24 00:27:24,402 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:24,402 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1396272465] [2024-11-24 00:27:24,402 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1396272465] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:24,402 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:24,402 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-24 00:27:24,402 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1373116126] [2024-11-24 00:27:24,402 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:24,403 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-24 00:27:24,403 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:24,404 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-24 00:27:24,404 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-11-24 00:27:24,404 INFO L87 Difference]: Start difference. First operand 465 states and 718 transitions. Second operand has 8 states, 7 states have (on average 13.714285714285714) internal successors, (96), 8 states have internal predecessors, (96), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-24 00:27:24,595 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:24,595 INFO L93 Difference]: Finished difference Result 907 states and 1402 transitions. [2024-11-24 00:27:24,595 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-24 00:27:24,596 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 13.714285714285714) internal successors, (96), 8 states have internal predecessors, (96), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) Word has length 158 [2024-11-24 00:27:24,596 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:24,600 INFO L225 Difference]: With dead ends: 907 [2024-11-24 00:27:24,600 INFO L226 Difference]: Without dead ends: 467 [2024-11-24 00:27:24,602 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2024-11-24 00:27:24,602 INFO L435 NwaCegarLoop]: 582 mSDtfsCounter, 7 mSDsluCounter, 3463 mSDsCounter, 0 mSdLazyCounter, 145 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 4045 SdHoareTripleChecker+Invalid, 149 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 145 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:24,602 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 4045 Invalid, 149 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 145 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 00:27:24,603 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 467 states. [2024-11-24 00:27:24,620 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 467 to 467. [2024-11-24 00:27:24,621 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 467 states, 359 states have (on average 1.5626740947075208) internal successors, (561), 365 states have internal predecessors, (561), 76 states have call successors, (76), 29 states have call predecessors, (76), 31 states have return successors, (82), 74 states have call predecessors, (82), 75 states have call successors, (82) [2024-11-24 00:27:24,626 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 467 states to 467 states and 719 transitions. [2024-11-24 00:27:24,627 INFO L78 Accepts]: Start accepts. Automaton has 467 states and 719 transitions. Word has length 158 [2024-11-24 00:27:24,627 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:24,627 INFO L471 AbstractCegarLoop]: Abstraction has 467 states and 719 transitions. [2024-11-24 00:27:24,627 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 13.714285714285714) internal successors, (96), 8 states have internal predecessors, (96), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-24 00:27:24,627 INFO L276 IsEmpty]: Start isEmpty. Operand 467 states and 719 transitions. [2024-11-24 00:27:24,630 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 160 [2024-11-24 00:27:24,631 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:24,631 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:24,631 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-24 00:27:24,631 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:24,631 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:24,632 INFO L85 PathProgramCache]: Analyzing trace with hash -1442987116, now seen corresponding path program 2 times [2024-11-24 00:27:24,632 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:24,632 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [705966354] [2024-11-24 00:27:24,632 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-11-24 00:27:24,632 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:24,675 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-11-24 00:27:24,676 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-24 00:27:24,854 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked. [2024-11-24 00:27:24,855 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:24,855 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [705966354] [2024-11-24 00:27:24,855 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [705966354] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:24,855 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:24,855 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-24 00:27:24,855 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1413873195] [2024-11-24 00:27:24,855 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:24,856 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-24 00:27:24,856 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:24,856 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-24 00:27:24,857 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=12, Invalid=30, Unknown=0, NotChecked=0, Total=42 [2024-11-24 00:27:24,857 INFO L87 Difference]: Start difference. First operand 467 states and 719 transitions. Second operand has 7 states, 6 states have (on average 15.666666666666666) internal successors, (94), 7 states have internal predecessors, (94), 4 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-24 00:27:24,989 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:24,989 INFO L93 Difference]: Finished difference Result 907 states and 1406 transitions. [2024-11-24 00:27:24,990 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-24 00:27:24,990 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 15.666666666666666) internal successors, (94), 7 states have internal predecessors, (94), 4 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) Word has length 159 [2024-11-24 00:27:24,990 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:24,994 INFO L225 Difference]: With dead ends: 907 [2024-11-24 00:27:24,995 INFO L226 Difference]: Without dead ends: 469 [2024-11-24 00:27:24,996 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=12, Invalid=30, Unknown=0, NotChecked=0, Total=42 [2024-11-24 00:27:24,997 INFO L435 NwaCegarLoop]: 590 mSDtfsCounter, 2 mSDsluCounter, 2922 mSDsCounter, 0 mSdLazyCounter, 86 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 4 SdHoareTripleChecker+Valid, 3512 SdHoareTripleChecker+Invalid, 86 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 86 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:24,998 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [4 Valid, 3512 Invalid, 86 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 86 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-24 00:27:24,999 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 469 states. [2024-11-24 00:27:25,022 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 469 to 469. [2024-11-24 00:27:25,023 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 469 states, 360 states have (on average 1.5611111111111111) internal successors, (562), 367 states have internal predecessors, (562), 76 states have call successors, (76), 29 states have call predecessors, (76), 32 states have return successors, (87), 74 states have call predecessors, (87), 75 states have call successors, (87) [2024-11-24 00:27:25,028 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 469 states to 469 states and 725 transitions. [2024-11-24 00:27:25,029 INFO L78 Accepts]: Start accepts. Automaton has 469 states and 725 transitions. Word has length 159 [2024-11-24 00:27:25,030 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:25,030 INFO L471 AbstractCegarLoop]: Abstraction has 469 states and 725 transitions. [2024-11-24 00:27:25,031 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 15.666666666666666) internal successors, (94), 7 states have internal predecessors, (94), 4 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-24 00:27:25,031 INFO L276 IsEmpty]: Start isEmpty. Operand 469 states and 725 transitions. [2024-11-24 00:27:25,034 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 161 [2024-11-24 00:27:25,035 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:25,035 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:25,036 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-24 00:27:25,036 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:25,036 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:25,037 INFO L85 PathProgramCache]: Analyzing trace with hash -998929369, now seen corresponding path program 1 times [2024-11-24 00:27:25,037 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:25,037 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1896677943] [2024-11-24 00:27:25,037 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:25,037 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:25,081 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:25,257 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 00:27:25,258 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:25,258 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1896677943] [2024-11-24 00:27:25,258 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1896677943] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:25,258 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1925670660] [2024-11-24 00:27:25,258 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:25,258 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:25,258 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:25,262 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:25,268 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-24 00:27:25,648 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:25,654 INFO L256 TraceCheckSpWp]: Trace formula consists of 1223 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-24 00:27:25,658 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:25,683 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 00:27:25,684 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-24 00:27:25,821 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 00:27:25,822 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1925670660] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-24 00:27:25,822 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-24 00:27:25,822 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2024-11-24 00:27:25,822 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [723241248] [2024-11-24 00:27:25,822 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-24 00:27:25,823 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-24 00:27:25,823 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:25,823 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-24 00:27:25,823 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-24 00:27:25,824 INFO L87 Difference]: Start difference. First operand 469 states and 725 transitions. Second operand has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) [2024-11-24 00:27:26,079 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:26,079 INFO L93 Difference]: Finished difference Result 1091 states and 1748 transitions. [2024-11-24 00:27:26,080 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-24 00:27:26,080 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) Word has length 160 [2024-11-24 00:27:26,080 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:26,087 INFO L225 Difference]: With dead ends: 1091 [2024-11-24 00:27:26,089 INFO L226 Difference]: Without dead ends: 880 [2024-11-24 00:27:26,090 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 322 GetRequests, 317 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-24 00:27:26,092 INFO L435 NwaCegarLoop]: 651 mSDtfsCounter, 530 mSDsluCounter, 1208 mSDsCounter, 0 mSdLazyCounter, 110 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 584 SdHoareTripleChecker+Valid, 1859 SdHoareTripleChecker+Invalid, 127 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 110 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:26,092 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [584 Valid, 1859 Invalid, 127 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 110 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-24 00:27:26,094 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 880 states. [2024-11-24 00:27:26,136 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 880 to 856. [2024-11-24 00:27:26,138 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 856 states, 668 states have (on average 1.6302395209580838) internal successors, (1089), 675 states have internal predecessors, (1089), 155 states have call successors, (155), 29 states have call predecessors, (155), 32 states have return successors, (176), 153 states have call predecessors, (176), 154 states have call successors, (176) [2024-11-24 00:27:26,145 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 856 states to 856 states and 1420 transitions. [2024-11-24 00:27:26,147 INFO L78 Accepts]: Start accepts. Automaton has 856 states and 1420 transitions. Word has length 160 [2024-11-24 00:27:26,148 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:26,148 INFO L471 AbstractCegarLoop]: Abstraction has 856 states and 1420 transitions. [2024-11-24 00:27:26,148 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) [2024-11-24 00:27:26,148 INFO L276 IsEmpty]: Start isEmpty. Operand 856 states and 1420 transitions. [2024-11-24 00:27:26,155 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 168 [2024-11-24 00:27:26,155 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:26,155 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:26,166 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-11-24 00:27:26,355 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-24 00:27:26,356 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:26,356 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:26,356 INFO L85 PathProgramCache]: Analyzing trace with hash 569469403, now seen corresponding path program 1 times [2024-11-24 00:27:26,356 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:26,356 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1314847156] [2024-11-24 00:27:26,357 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:26,357 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:26,396 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:26,449 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 00:27:26,449 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:26,449 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1314847156] [2024-11-24 00:27:26,449 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1314847156] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:26,449 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:26,450 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:26,450 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1326967151] [2024-11-24 00:27:26,450 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:26,450 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:26,450 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:26,451 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:26,451 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:26,451 INFO L87 Difference]: Start difference. First operand 856 states and 1420 transitions. Second operand has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-24 00:27:26,517 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:26,517 INFO L93 Difference]: Finished difference Result 2035 states and 3430 transitions. [2024-11-24 00:27:26,518 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:26,518 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 167 [2024-11-24 00:27:26,518 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:26,527 INFO L225 Difference]: With dead ends: 2035 [2024-11-24 00:27:26,527 INFO L226 Difference]: Without dead ends: 1247 [2024-11-24 00:27:26,531 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:26,531 INFO L435 NwaCegarLoop]: 619 mSDtfsCounter, 124 mSDsluCounter, 596 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1215 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:26,532 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1215 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:26,533 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1247 states. [2024-11-24 00:27:26,598 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1247 to 1239. [2024-11-24 00:27:26,601 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1239 states, 972 states have (on average 1.6481481481481481) internal successors, (1602), 979 states have internal predecessors, (1602), 234 states have call successors, (234), 29 states have call predecessors, (234), 32 states have return successors, (265), 232 states have call predecessors, (265), 233 states have call successors, (265) [2024-11-24 00:27:26,612 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1239 states to 1239 states and 2101 transitions. [2024-11-24 00:27:26,613 INFO L78 Accepts]: Start accepts. Automaton has 1239 states and 2101 transitions. Word has length 167 [2024-11-24 00:27:26,614 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:26,614 INFO L471 AbstractCegarLoop]: Abstraction has 1239 states and 2101 transitions. [2024-11-24 00:27:26,614 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-24 00:27:26,614 INFO L276 IsEmpty]: Start isEmpty. Operand 1239 states and 2101 transitions. [2024-11-24 00:27:26,623 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 150 [2024-11-24 00:27:26,624 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:26,624 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:26,624 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-24 00:27:26,624 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:26,625 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:26,625 INFO L85 PathProgramCache]: Analyzing trace with hash 924142922, now seen corresponding path program 1 times [2024-11-24 00:27:26,625 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:26,625 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1490259892] [2024-11-24 00:27:26,625 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:26,625 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:26,665 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:26,716 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:26,716 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:26,716 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1490259892] [2024-11-24 00:27:26,717 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1490259892] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:26,717 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:26,717 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:26,717 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2140327656] [2024-11-24 00:27:26,717 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:26,719 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:26,719 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:26,719 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:26,719 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:26,720 INFO L87 Difference]: Start difference. First operand 1239 states and 2101 transitions. Second operand has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:26,819 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:26,820 INFO L93 Difference]: Finished difference Result 2967 states and 5071 transitions. [2024-11-24 00:27:26,820 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:26,820 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 149 [2024-11-24 00:27:26,821 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:26,837 INFO L225 Difference]: With dead ends: 2967 [2024-11-24 00:27:26,838 INFO L226 Difference]: Without dead ends: 1847 [2024-11-24 00:27:26,843 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:26,844 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 122 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1188 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:26,845 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1188 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:26,848 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1847 states. [2024-11-24 00:27:26,970 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1847 to 1839. [2024-11-24 00:27:26,974 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1839 states, 1453 states have (on average 1.6607019958706126) internal successors, (2413), 1460 states have internal predecessors, (2413), 353 states have call successors, (353), 29 states have call predecessors, (353), 32 states have return successors, (384), 351 states have call predecessors, (384), 352 states have call successors, (384) [2024-11-24 00:27:26,989 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1839 states to 1839 states and 3150 transitions. [2024-11-24 00:27:26,991 INFO L78 Accepts]: Start accepts. Automaton has 1839 states and 3150 transitions. Word has length 149 [2024-11-24 00:27:26,992 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:26,992 INFO L471 AbstractCegarLoop]: Abstraction has 1839 states and 3150 transitions. [2024-11-24 00:27:26,992 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:26,992 INFO L276 IsEmpty]: Start isEmpty. Operand 1839 states and 3150 transitions. [2024-11-24 00:27:27,006 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 151 [2024-11-24 00:27:27,006 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:27,006 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:27,007 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-24 00:27:27,007 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:27,007 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:27,007 INFO L85 PathProgramCache]: Analyzing trace with hash -1547162464, now seen corresponding path program 1 times [2024-11-24 00:27:27,008 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:27,008 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1972183141] [2024-11-24 00:27:27,008 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:27,008 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:27,046 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:27,097 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:27,098 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:27,098 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1972183141] [2024-11-24 00:27:27,098 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1972183141] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:27,098 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:27,098 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:27,098 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [675621331] [2024-11-24 00:27:27,098 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:27,099 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:27,099 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:27,100 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:27,100 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:27,101 INFO L87 Difference]: Start difference. First operand 1839 states and 3150 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:27,235 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:27,235 INFO L93 Difference]: Finished difference Result 4364 states and 7543 transitions. [2024-11-24 00:27:27,235 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:27,236 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 150 [2024-11-24 00:27:27,237 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:27,257 INFO L225 Difference]: With dead ends: 4364 [2024-11-24 00:27:27,257 INFO L226 Difference]: Without dead ends: 2765 [2024-11-24 00:27:27,264 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:27,266 INFO L435 NwaCegarLoop]: 604 mSDtfsCounter, 120 mSDsluCounter, 589 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1193 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:27,267 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1193 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:27,270 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2765 states. [2024-11-24 00:27:27,420 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2765 to 2757. [2024-11-24 00:27:27,426 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2757 states, 2209 states have (on average 1.6708918062471707) internal successors, (3691), 2216 states have internal predecessors, (3691), 515 states have call successors, (515), 29 states have call predecessors, (515), 32 states have return successors, (562), 513 states have call predecessors, (562), 514 states have call successors, (562) [2024-11-24 00:27:27,448 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2757 states to 2757 states and 4768 transitions. [2024-11-24 00:27:27,451 INFO L78 Accepts]: Start accepts. Automaton has 2757 states and 4768 transitions. Word has length 150 [2024-11-24 00:27:27,451 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:27,451 INFO L471 AbstractCegarLoop]: Abstraction has 2757 states and 4768 transitions. [2024-11-24 00:27:27,451 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:27,451 INFO L276 IsEmpty]: Start isEmpty. Operand 2757 states and 4768 transitions. [2024-11-24 00:27:27,475 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 152 [2024-11-24 00:27:27,476 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:27,476 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:27,476 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-11-24 00:27:27,476 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:27,477 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:27,477 INFO L85 PathProgramCache]: Analyzing trace with hash -2051715413, now seen corresponding path program 1 times [2024-11-24 00:27:27,477 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:27,477 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [241258939] [2024-11-24 00:27:27,477 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:27,477 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:27,516 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:27,578 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:27,579 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:27,579 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [241258939] [2024-11-24 00:27:27,579 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [241258939] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:27,579 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:27,579 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:27,579 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1857859926] [2024-11-24 00:27:27,579 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:27,580 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:27,580 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:27,580 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:27,581 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:27,582 INFO L87 Difference]: Start difference. First operand 2757 states and 4768 transitions. Second operand has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:27,804 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:27,804 INFO L93 Difference]: Finished difference Result 6567 states and 11449 transitions. [2024-11-24 00:27:27,805 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:27,805 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 151 [2024-11-24 00:27:27,805 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:27,839 INFO L225 Difference]: With dead ends: 6567 [2024-11-24 00:27:27,839 INFO L226 Difference]: Without dead ends: 4247 [2024-11-24 00:27:27,849 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:27,852 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 118 mSDsluCounter, 588 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1185 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:27,852 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1185 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:27,857 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4247 states. [2024-11-24 00:27:28,124 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4247 to 4239. [2024-11-24 00:27:28,133 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4239 states, 3446 states have (on average 1.6781775972141613) internal successors, (5783), 3453 states have internal predecessors, (5783), 760 states have call successors, (760), 29 states have call predecessors, (760), 32 states have return successors, (833), 758 states have call predecessors, (833), 759 states have call successors, (833) [2024-11-24 00:27:28,164 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4239 states to 4239 states and 7376 transitions. [2024-11-24 00:27:28,168 INFO L78 Accepts]: Start accepts. Automaton has 4239 states and 7376 transitions. Word has length 151 [2024-11-24 00:27:28,168 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:28,169 INFO L471 AbstractCegarLoop]: Abstraction has 4239 states and 7376 transitions. [2024-11-24 00:27:28,169 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:28,169 INFO L276 IsEmpty]: Start isEmpty. Operand 4239 states and 7376 transitions. [2024-11-24 00:27:28,199 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 172 [2024-11-24 00:27:28,199 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:28,199 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:28,200 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2024-11-24 00:27:28,200 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:28,200 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:28,200 INFO L85 PathProgramCache]: Analyzing trace with hash 192117821, now seen corresponding path program 1 times [2024-11-24 00:27:28,201 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:28,201 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [597580081] [2024-11-24 00:27:28,201 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:28,201 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:28,237 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:28,286 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-24 00:27:28,286 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:28,286 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [597580081] [2024-11-24 00:27:28,287 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [597580081] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:28,287 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:28,287 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:28,287 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2116607151] [2024-11-24 00:27:28,287 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:28,288 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:28,288 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:28,288 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:28,288 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:28,289 INFO L87 Difference]: Start difference. First operand 4239 states and 7376 transitions. Second operand has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-24 00:27:28,677 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:28,678 INFO L93 Difference]: Finished difference Result 10506 states and 18384 transitions. [2024-11-24 00:27:28,678 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:28,678 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 171 [2024-11-24 00:27:28,679 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:28,735 INFO L225 Difference]: With dead ends: 10506 [2024-11-24 00:27:28,735 INFO L226 Difference]: Without dead ends: 6925 [2024-11-24 00:27:28,755 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:28,755 INFO L435 NwaCegarLoop]: 613 mSDtfsCounter, 116 mSDsluCounter, 596 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1209 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:28,756 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1209 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:28,764 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 6925 states. [2024-11-24 00:27:29,215 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 6925 to 6917. [2024-11-24 00:27:29,237 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 6917 states, 5631 states have (on average 1.6751909074764695) internal successors, (9433), 5638 states have internal predecessors, (9433), 1253 states have call successors, (1253), 29 states have call predecessors, (1253), 32 states have return successors, (1370), 1251 states have call predecessors, (1370), 1252 states have call successors, (1370) [2024-11-24 00:27:29,294 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6917 states to 6917 states and 12056 transitions. [2024-11-24 00:27:29,298 INFO L78 Accepts]: Start accepts. Automaton has 6917 states and 12056 transitions. Word has length 171 [2024-11-24 00:27:29,299 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:29,299 INFO L471 AbstractCegarLoop]: Abstraction has 6917 states and 12056 transitions. [2024-11-24 00:27:29,303 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-24 00:27:29,303 INFO L276 IsEmpty]: Start isEmpty. Operand 6917 states and 12056 transitions. [2024-11-24 00:27:29,352 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 154 [2024-11-24 00:27:29,352 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:29,352 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:29,352 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2024-11-24 00:27:29,352 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:29,353 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:29,353 INFO L85 PathProgramCache]: Analyzing trace with hash 190586159, now seen corresponding path program 1 times [2024-11-24 00:27:29,353 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:29,353 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [843540464] [2024-11-24 00:27:29,353 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:29,353 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:29,389 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:29,437 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:29,437 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:29,437 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [843540464] [2024-11-24 00:27:29,437 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [843540464] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:29,438 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:29,438 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:29,438 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1538554012] [2024-11-24 00:27:29,438 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:29,438 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:29,438 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:29,439 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:29,440 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:29,440 INFO L87 Difference]: Start difference. First operand 6917 states and 12056 transitions. Second operand has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:29,914 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:29,914 INFO L93 Difference]: Finished difference Result 17513 states and 30712 transitions. [2024-11-24 00:27:29,915 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:29,915 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 153 [2024-11-24 00:27:29,916 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:30,008 INFO L225 Difference]: With dead ends: 17513 [2024-11-24 00:27:30,008 INFO L226 Difference]: Without dead ends: 11615 [2024-11-24 00:27:30,037 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:30,037 INFO L435 NwaCegarLoop]: 599 mSDtfsCounter, 114 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 132 SdHoareTripleChecker+Valid, 1190 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:30,037 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [132 Valid, 1190 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:30,050 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 11615 states. [2024-11-24 00:27:30,673 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 11615 to 11607. [2024-11-24 00:27:30,701 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11607 states, 9499 states have (on average 1.6756500684282556) internal successors, (15917), 9506 states have internal predecessors, (15917), 2075 states have call successors, (2075), 29 states have call predecessors, (2075), 32 states have return successors, (2270), 2073 states have call predecessors, (2270), 2074 states have call successors, (2270) [2024-11-24 00:27:30,767 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11607 states to 11607 states and 20262 transitions. [2024-11-24 00:27:30,773 INFO L78 Accepts]: Start accepts. Automaton has 11607 states and 20262 transitions. Word has length 153 [2024-11-24 00:27:30,773 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:30,773 INFO L471 AbstractCegarLoop]: Abstraction has 11607 states and 20262 transitions. [2024-11-24 00:27:30,774 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:30,775 INFO L276 IsEmpty]: Start isEmpty. Operand 11607 states and 20262 transitions. [2024-11-24 00:27:30,843 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 155 [2024-11-24 00:27:30,844 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:30,844 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:30,844 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2024-11-24 00:27:30,844 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:30,845 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:30,845 INFO L85 PathProgramCache]: Analyzing trace with hash -1428741282, now seen corresponding path program 1 times [2024-11-24 00:27:30,845 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:30,845 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [63748015] [2024-11-24 00:27:30,845 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:30,846 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:30,888 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:30,937 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:30,937 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:30,937 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [63748015] [2024-11-24 00:27:30,937 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [63748015] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:30,937 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:30,938 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:30,938 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1762007812] [2024-11-24 00:27:30,938 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:30,938 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:30,938 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:30,939 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:30,939 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:30,940 INFO L87 Difference]: Start difference. First operand 11607 states and 20262 transitions. Second operand has 3 states, 3 states have (on average 32.666666666666664) internal successors, (98), 3 states have internal predecessors, (98), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:31,705 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:31,705 INFO L93 Difference]: Finished difference Result 27708 states and 48318 transitions. [2024-11-24 00:27:31,706 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:31,706 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 32.666666666666664) internal successors, (98), 3 states have internal predecessors, (98), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 154 [2024-11-24 00:27:31,706 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:31,816 INFO L225 Difference]: With dead ends: 27708 [2024-11-24 00:27:31,816 INFO L226 Difference]: Without dead ends: 18042 [2024-11-24 00:27:31,861 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:31,861 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 112 mSDsluCounter, 563 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 130 SdHoareTripleChecker+Valid, 1160 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:31,863 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [130 Valid, 1160 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:31,883 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18042 states. [2024-11-24 00:27:33,078 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18042 to 18034. [2024-11-24 00:27:33,107 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18034 states, 14723 states have (on average 1.6516334986076207) internal successors, (24317), 14730 states have internal predecessors, (24317), 3278 states have call successors, (3278), 29 states have call predecessors, (3278), 32 states have return successors, (3617), 3276 states have call predecessors, (3617), 3277 states have call successors, (3617) [2024-11-24 00:27:33,293 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18034 states to 18034 states and 31212 transitions. [2024-11-24 00:27:33,300 INFO L78 Accepts]: Start accepts. Automaton has 18034 states and 31212 transitions. Word has length 154 [2024-11-24 00:27:33,301 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:33,301 INFO L471 AbstractCegarLoop]: Abstraction has 18034 states and 31212 transitions. [2024-11-24 00:27:33,301 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 32.666666666666664) internal successors, (98), 3 states have internal predecessors, (98), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:33,301 INFO L276 IsEmpty]: Start isEmpty. Operand 18034 states and 31212 transitions. [2024-11-24 00:27:33,369 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 156 [2024-11-24 00:27:33,369 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:33,370 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:33,370 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2024-11-24 00:27:33,370 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:33,370 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:33,370 INFO L85 PathProgramCache]: Analyzing trace with hash 1259303472, now seen corresponding path program 1 times [2024-11-24 00:27:33,371 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:33,372 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1796710975] [2024-11-24 00:27:33,372 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:33,372 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:33,406 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:33,457 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:33,458 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:33,458 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1796710975] [2024-11-24 00:27:33,458 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1796710975] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:33,458 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:33,458 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:33,460 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [144407940] [2024-11-24 00:27:33,460 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:33,460 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:33,460 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:33,461 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:33,461 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:33,461 INFO L87 Difference]: Start difference. First operand 18034 states and 31212 transitions. Second operand has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:34,494 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:34,495 INFO L93 Difference]: Finished difference Result 47690 states and 82842 transitions. [2024-11-24 00:27:34,495 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:34,495 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 155 [2024-11-24 00:27:34,496 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:34,675 INFO L225 Difference]: With dead ends: 47690 [2024-11-24 00:27:34,675 INFO L226 Difference]: Without dead ends: 32175 [2024-11-24 00:27:34,729 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:34,730 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 110 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1188 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:34,730 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1188 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:34,765 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 32175 states. [2024-11-24 00:27:36,458 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 32175 to 32167. [2024-11-24 00:27:36,499 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32167 states, 26406 states have (on average 1.6481481481481481) internal successors, (43521), 26413 states have internal predecessors, (43521), 5728 states have call successors, (5728), 29 states have call predecessors, (5728), 32 states have return successors, (6341), 5726 states have call predecessors, (6341), 5727 states have call successors, (6341) [2024-11-24 00:27:36,701 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32167 states to 32167 states and 55590 transitions. [2024-11-24 00:27:36,746 INFO L78 Accepts]: Start accepts. Automaton has 32167 states and 55590 transitions. Word has length 155 [2024-11-24 00:27:36,747 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:36,747 INFO L471 AbstractCegarLoop]: Abstraction has 32167 states and 55590 transitions. [2024-11-24 00:27:36,747 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:36,747 INFO L276 IsEmpty]: Start isEmpty. Operand 32167 states and 55590 transitions. [2024-11-24 00:27:36,867 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 157 [2024-11-24 00:27:36,868 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:36,868 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:36,868 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2024-11-24 00:27:36,868 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:36,870 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:36,870 INFO L85 PathProgramCache]: Analyzing trace with hash 1699386808, now seen corresponding path program 1 times [2024-11-24 00:27:36,870 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:36,870 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1841079850] [2024-11-24 00:27:36,871 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:36,871 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:36,920 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:36,996 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:36,997 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:36,997 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1841079850] [2024-11-24 00:27:36,997 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1841079850] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:36,997 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:36,997 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:36,997 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1400646230] [2024-11-24 00:27:36,998 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:36,999 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:36,999 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:37,000 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:37,001 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:37,001 INFO L87 Difference]: Start difference. First operand 32167 states and 55590 transitions. Second operand has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:39,082 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:39,082 INFO L93 Difference]: Finished difference Result 87752 states and 152109 transitions. [2024-11-24 00:27:39,082 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:39,083 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 156 [2024-11-24 00:27:39,083 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:39,629 INFO L225 Difference]: With dead ends: 87752 [2024-11-24 00:27:39,630 INFO L226 Difference]: Without dead ends: 58943 [2024-11-24 00:27:39,741 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:39,741 INFO L435 NwaCegarLoop]: 606 mSDtfsCounter, 108 mSDsluCounter, 592 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 126 SdHoareTripleChecker+Valid, 1198 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:39,742 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [126 Valid, 1198 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:39,788 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 58943 states. [2024-11-24 00:27:42,668 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 58943 to 58935. [2024-11-24 00:27:42,750 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 58935 states, 48661 states have (on average 1.6435132857935513) internal successors, (79975), 48668 states have internal predecessors, (79975), 10241 states have call successors, (10241), 29 states have call predecessors, (10241), 32 states have return successors, (11386), 10239 states have call predecessors, (11386), 10240 states have call successors, (11386) [2024-11-24 00:27:42,962 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 58935 states to 58935 states and 101602 transitions. [2024-11-24 00:27:42,986 INFO L78 Accepts]: Start accepts. Automaton has 58935 states and 101602 transitions. Word has length 156 [2024-11-24 00:27:42,986 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:42,986 INFO L471 AbstractCegarLoop]: Abstraction has 58935 states and 101602 transitions. [2024-11-24 00:27:42,987 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:42,987 INFO L276 IsEmpty]: Start isEmpty. Operand 58935 states and 101602 transitions. [2024-11-24 00:27:43,086 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 158 [2024-11-24 00:27:43,086 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:43,086 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:43,087 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2024-11-24 00:27:43,087 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:43,087 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:43,087 INFO L85 PathProgramCache]: Analyzing trace with hash 296354192, now seen corresponding path program 1 times [2024-11-24 00:27:43,087 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:43,088 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [284198367] [2024-11-24 00:27:43,088 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:43,088 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:43,119 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:43,436 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-24 00:27:43,436 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:43,436 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [284198367] [2024-11-24 00:27:43,436 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [284198367] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-24 00:27:43,436 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-24 00:27:43,436 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-24 00:27:43,437 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [699249414] [2024-11-24 00:27:43,437 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-24 00:27:43,437 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-24 00:27:43,438 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:43,438 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-24 00:27:43,438 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:43,438 INFO L87 Difference]: Start difference. First operand 58935 states and 101602 transitions. Second operand has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:46,134 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-24 00:27:46,134 INFO L93 Difference]: Finished difference Result 110324 states and 190599 transitions. [2024-11-24 00:27:46,134 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-24 00:27:46,135 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 157 [2024-11-24 00:27:46,135 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-24 00:27:46,787 INFO L225 Difference]: With dead ends: 110324 [2024-11-24 00:27:46,787 INFO L226 Difference]: Without dead ends: 110113 [2024-11-24 00:27:46,833 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-24 00:27:46,836 INFO L435 NwaCegarLoop]: 606 mSDtfsCounter, 103 mSDsluCounter, 596 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 1202 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-24 00:27:46,837 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 1202 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-24 00:27:46,919 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110113 states. [2024-11-24 00:27:50,837 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110113 to 110105. [2024-11-24 00:27:50,950 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 110105 states, 91463 states have (on average 1.6377551578233822) internal successors, (149794), 91470 states have internal predecessors, (149794), 18609 states have call successors, (18609), 29 states have call predecessors, (18609), 32 states have return successors, (20800), 18607 states have call predecessors, (20800), 18608 states have call successors, (20800) [2024-11-24 00:27:51,387 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 110105 states to 110105 states and 189203 transitions. [2024-11-24 00:27:51,417 INFO L78 Accepts]: Start accepts. Automaton has 110105 states and 189203 transitions. Word has length 157 [2024-11-24 00:27:51,418 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-24 00:27:51,418 INFO L471 AbstractCegarLoop]: Abstraction has 110105 states and 189203 transitions. [2024-11-24 00:27:51,418 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-24 00:27:51,418 INFO L276 IsEmpty]: Start isEmpty. Operand 110105 states and 189203 transitions. [2024-11-24 00:27:51,564 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 159 [2024-11-24 00:27:51,564 INFO L210 NwaCegarLoop]: Found error trace [2024-11-24 00:27:51,565 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-24 00:27:51,565 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2024-11-24 00:27:51,565 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-24 00:27:51,566 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-24 00:27:51,566 INFO L85 PathProgramCache]: Analyzing trace with hash 1609547063, now seen corresponding path program 1 times [2024-11-24 00:27:51,566 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-24 00:27:51,566 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [574344876] [2024-11-24 00:27:51,566 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:51,566 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-24 00:27:51,607 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:52,047 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-24 00:27:52,047 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-24 00:27:52,047 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [574344876] [2024-11-24 00:27:52,047 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [574344876] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-24 00:27:52,047 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1969179184] [2024-11-24 00:27:52,048 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-24 00:27:52,048 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-24 00:27:52,048 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 [2024-11-24 00:27:52,050 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-24 00:27:52,053 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_39969052-06cc-4bf3-8d03-b58ac4738bca/bin/uautomizer-verify-LYvppIcaGC/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-11-24 00:27:52,464 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-24 00:27:52,470 INFO L256 TraceCheckSpWp]: Trace formula consists of 1197 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-24 00:27:52,475 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-24 00:27:52,850 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 18 proven. 6 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2024-11-24 00:27:52,850 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-24 00:27:53,392 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-24 00:27:53,393 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1969179184] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-24 00:27:53,393 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-24 00:27:53,393 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 9, 9] total 28 [2024-11-24 00:27:53,393 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1162421922] [2024-11-24 00:27:53,393 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-24 00:27:53,394 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2024-11-24 00:27:53,394 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-24 00:27:53,395 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2024-11-24 00:27:53,396 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=68, Invalid=688, Unknown=0, NotChecked=0, Total=756 [2024-11-24 00:27:53,397 INFO L87 Difference]: Start difference. First operand 110105 states and 189203 transitions. Second operand has 28 states, 26 states have (on average 9.807692307692308) internal successors, (255), 24 states have internal predecessors, (255), 9 states have call successors, (52), 8 states have call predecessors, (52), 12 states have return successors, (45), 11 states have call predecessors, (45), 9 states have call successors, (45)