./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/email_spec1_product34.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version d790fecc Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/email_spec1_product34.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 76fb98768a82c6e881c4461160153969b956a6a73a8217d33a39b93921ba72b5 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-d790fec [2024-11-28 02:15:44,495 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-28 02:15:44,587 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-28 02:15:44,592 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-28 02:15:44,593 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-28 02:15:44,619 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-28 02:15:44,621 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-28 02:15:44,621 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-28 02:15:44,621 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-28 02:15:44,621 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-28 02:15:44,622 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-28 02:15:44,622 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-28 02:15:44,623 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-28 02:15:44,623 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-28 02:15:44,623 INFO L153 SettingsManager]: * Use SBE=true [2024-11-28 02:15:44,624 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2024-11-28 02:15:44,625 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-28 02:15:44,626 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-28 02:15:44,626 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-28 02:15:44,626 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-28 02:15:44,626 INFO L153 SettingsManager]: * Compute procedure contracts=false [2024-11-28 02:15:44,627 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-28 02:15:44,627 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-28 02:15:44,627 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-28 02:15:44,627 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-28 02:15:44,627 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-28 02:15:44,628 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-28 02:15:44,628 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-28 02:15:44,628 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 76fb98768a82c6e881c4461160153969b956a6a73a8217d33a39b93921ba72b5 [2024-11-28 02:15:45,001 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-28 02:15:45,011 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-28 02:15:45,014 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-28 02:15:45,015 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-28 02:15:45,016 INFO L274 PluginConnector]: CDTParser initialized [2024-11-28 02:15:45,017 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/../../sv-benchmarks/c/product-lines/email_spec1_product34.cil.c [2024-11-28 02:15:47,998 INFO L533 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/data/ea5b80ee6/6be3f222b25e4b698a7adfcf51007ca9/FLAG6858017b3 [2024-11-28 02:15:48,408 INFO L384 CDTParser]: Found 1 translation units. [2024-11-28 02:15:48,408 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/sv-benchmarks/c/product-lines/email_spec1_product34.cil.c [2024-11-28 02:15:48,427 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/data/ea5b80ee6/6be3f222b25e4b698a7adfcf51007ca9/FLAG6858017b3 [2024-11-28 02:15:48,443 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/data/ea5b80ee6/6be3f222b25e4b698a7adfcf51007ca9 [2024-11-28 02:15:48,445 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-28 02:15:48,450 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-28 02:15:48,451 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-28 02:15:48,451 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-28 02:15:48,458 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-28 02:15:48,459 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 28.11 02:15:48" (1/1) ... [2024-11-28 02:15:48,462 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@479e9755 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:48, skipping insertion in model container [2024-11-28 02:15:48,462 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 28.11 02:15:48" (1/1) ... [2024-11-28 02:15:48,515 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-28 02:15:48,740 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/sv-benchmarks/c/product-lines/email_spec1_product34.cil.c[2480,2493] [2024-11-28 02:15:49,194 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-28 02:15:49,207 INFO L200 MainTranslator]: Completed pre-run [2024-11-28 02:15:49,217 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"AddressBookEncrypt_spec.i","") [48] [2024-11-28 02:15:49,218 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [90] [2024-11-28 02:15:49,218 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [99] [2024-11-28 02:15:49,218 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [117] [2024-11-28 02:15:49,219 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [483] [2024-11-28 02:15:49,219 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [1563] [2024-11-28 02:15:49,219 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [1601] [2024-11-28 02:15:49,219 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [2021] [2024-11-28 02:15:49,219 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [2250] [2024-11-28 02:15:49,219 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2387] [2024-11-28 02:15:49,220 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [2784] [2024-11-28 02:15:49,224 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/sv-benchmarks/c/product-lines/email_spec1_product34.cil.c[2480,2493] [2024-11-28 02:15:49,348 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-28 02:15:49,390 INFO L204 MainTranslator]: Completed translation [2024-11-28 02:15:49,391 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49 WrapperNode [2024-11-28 02:15:49,391 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-28 02:15:49,392 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-28 02:15:49,392 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-28 02:15:49,392 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-28 02:15:49,398 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,437 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,527 INFO L138 Inliner]: procedures = 134, calls = 219, calls flagged for inlining = 62, calls inlined = 59, statements flattened = 1102 [2024-11-28 02:15:49,528 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-28 02:15:49,528 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-28 02:15:49,528 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-28 02:15:49,528 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-28 02:15:49,540 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,540 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,547 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,583 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2024-11-28 02:15:49,583 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,583 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,609 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,611 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,621 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,627 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,631 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,660 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-28 02:15:49,661 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-28 02:15:49,661 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-28 02:15:49,662 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-28 02:15:49,662 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (1/1) ... [2024-11-28 02:15:49,668 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-28 02:15:49,691 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:15:49,716 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-28 02:15:49,721 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-28 02:15:49,750 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2024-11-28 02:15:49,750 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2024-11-28 02:15:49,751 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2024-11-28 02:15:49,751 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2024-11-28 02:15:49,751 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2024-11-28 02:15:49,751 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2024-11-28 02:15:49,752 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2024-11-28 02:15:49,752 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2024-11-28 02:15:49,752 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2024-11-28 02:15:49,752 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2024-11-28 02:15:49,753 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2024-11-28 02:15:49,753 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2024-11-28 02:15:49,753 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2024-11-28 02:15:49,755 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2024-11-28 02:15:49,755 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2024-11-28 02:15:49,755 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2024-11-28 02:15:49,755 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2024-11-28 02:15:49,755 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2024-11-28 02:15:49,755 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2024-11-28 02:15:49,755 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2024-11-28 02:15:49,756 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2024-11-28 02:15:49,756 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2024-11-28 02:15:49,757 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2024-11-28 02:15:49,757 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2024-11-28 02:15:49,757 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2024-11-28 02:15:49,757 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2024-11-28 02:15:49,757 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2024-11-28 02:15:49,757 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2024-11-28 02:15:49,758 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt [2024-11-28 02:15:49,758 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt [2024-11-28 02:15:49,758 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2024-11-28 02:15:49,758 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2024-11-28 02:15:49,758 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2024-11-28 02:15:49,758 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2024-11-28 02:15:49,759 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2024-11-28 02:15:49,759 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2024-11-28 02:15:49,759 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2024-11-28 02:15:49,759 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2024-11-28 02:15:49,759 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2024-11-28 02:15:49,760 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2024-11-28 02:15:49,760 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-28 02:15:49,760 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-28 02:15:50,033 INFO L234 CfgBuilder]: Building ICFG [2024-11-28 02:15:50,035 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-28 02:15:51,595 INFO L? ?]: Removed 583 outVars from TransFormulas that were not future-live. [2024-11-28 02:15:51,595 INFO L283 CfgBuilder]: Performing block encoding [2024-11-28 02:15:51,618 INFO L307 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-28 02:15:51,618 INFO L312 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-28 02:15:51,618 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 02:15:51 BoogieIcfgContainer [2024-11-28 02:15:51,618 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-28 02:15:51,620 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-28 02:15:51,620 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-28 02:15:51,625 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-28 02:15:51,626 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 28.11 02:15:48" (1/3) ... [2024-11-28 02:15:51,626 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@91b1f2f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 28.11 02:15:51, skipping insertion in model container [2024-11-28 02:15:51,626 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:15:49" (2/3) ... [2024-11-28 02:15:51,627 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@91b1f2f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 28.11 02:15:51, skipping insertion in model container [2024-11-28 02:15:51,627 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 02:15:51" (3/3) ... [2024-11-28 02:15:51,628 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec1_product34.cil.c [2024-11-28 02:15:51,650 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-28 02:15:51,653 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec1_product34.cil.c that has 29 procedures, 446 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2024-11-28 02:15:51,752 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-28 02:15:51,768 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2cd6547d, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-28 02:15:51,769 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-28 02:15:51,776 INFO L276 IsEmpty]: Start isEmpty. Operand has 446 states, 345 states have (on average 1.5391304347826087) internal successors, (531), 350 states have internal predecessors, (531), 71 states have call successors, (71), 28 states have call predecessors, (71), 28 states have return successors, (71), 70 states have call predecessors, (71), 71 states have call successors, (71) [2024-11-28 02:15:51,797 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2024-11-28 02:15:51,797 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:51,798 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:51,799 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:51,803 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:51,804 INFO L85 PathProgramCache]: Analyzing trace with hash 1736509623, now seen corresponding path program 1 times [2024-11-28 02:15:51,811 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:51,812 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1618170286] [2024-11-28 02:15:51,812 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:51,813 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:52,008 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:52,758 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2024-11-28 02:15:52,758 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:52,759 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1618170286] [2024-11-28 02:15:52,763 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1618170286] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-28 02:15:52,763 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1393997611] [2024-11-28 02:15:52,763 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:52,763 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:15:52,763 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:15:52,766 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-28 02:15:52,769 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-28 02:15:53,233 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:53,238 INFO L256 TraceCheckSpWp]: Trace formula consists of 1103 conjuncts, 2 conjuncts are in the unsatisfiable core [2024-11-28 02:15:53,250 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-28 02:15:53,310 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-28 02:15:53,311 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-28 02:15:53,311 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1393997611] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:53,311 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-28 02:15:53,311 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-28 02:15:53,314 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1636668021] [2024-11-28 02:15:53,314 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:53,318 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:15:53,319 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:53,336 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:15:53,336 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-28 02:15:53,339 INFO L87 Difference]: Start difference. First operand has 446 states, 345 states have (on average 1.5391304347826087) internal successors, (531), 350 states have internal predecessors, (531), 71 states have call successors, (71), 28 states have call predecessors, (71), 28 states have return successors, (71), 70 states have call predecessors, (71), 71 states have call successors, (71) Second operand has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:15:53,447 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:53,448 INFO L93 Difference]: Finished difference Result 702 states and 1042 transitions. [2024-11-28 02:15:53,449 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:15:53,450 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 110 [2024-11-28 02:15:53,450 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:53,464 INFO L225 Difference]: With dead ends: 702 [2024-11-28 02:15:53,464 INFO L226 Difference]: Without dead ends: 441 [2024-11-28 02:15:53,470 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 114 GetRequests, 110 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-28 02:15:53,473 INFO L435 NwaCegarLoop]: 667 mSDtfsCounter, 1 mSDsluCounter, 664 mSDsCounter, 0 mSdLazyCounter, 6 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 1331 SdHoareTripleChecker+Invalid, 6 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 6 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:53,475 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 1331 Invalid, 6 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 6 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:53,493 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 441 states. [2024-11-28 02:15:53,564 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 441 to 440. [2024-11-28 02:15:53,566 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 440 states, 340 states have (on average 1.5323529411764707) internal successors, (521), 344 states have internal predecessors, (521), 71 states have call successors, (71), 28 states have call predecessors, (71), 28 states have return successors, (70), 69 states have call predecessors, (70), 70 states have call successors, (70) [2024-11-28 02:15:53,575 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 440 states to 440 states and 662 transitions. [2024-11-28 02:15:53,577 INFO L78 Accepts]: Start accepts. Automaton has 440 states and 662 transitions. Word has length 110 [2024-11-28 02:15:53,579 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:53,579 INFO L471 AbstractCegarLoop]: Abstraction has 440 states and 662 transitions. [2024-11-28 02:15:53,579 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 21.333333333333332) internal successors, (64), 3 states have internal predecessors, (64), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:15:53,579 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 662 transitions. [2024-11-28 02:15:53,585 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 116 [2024-11-28 02:15:53,585 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:53,585 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:53,599 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-28 02:15:53,788 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-11-28 02:15:53,789 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:53,789 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:53,789 INFO L85 PathProgramCache]: Analyzing trace with hash -1990033895, now seen corresponding path program 1 times [2024-11-28 02:15:53,790 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:53,790 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1109399131] [2024-11-28 02:15:53,790 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:53,790 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:53,864 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:54,200 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-28 02:15:54,200 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:54,200 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1109399131] [2024-11-28 02:15:54,200 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1109399131] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-28 02:15:54,201 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1267710877] [2024-11-28 02:15:54,201 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:54,201 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:15:54,201 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:15:54,207 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-28 02:15:54,208 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-28 02:15:54,656 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:54,661 INFO L256 TraceCheckSpWp]: Trace formula consists of 1114 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-28 02:15:54,666 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-28 02:15:54,703 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-28 02:15:54,707 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-28 02:15:54,707 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1267710877] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:54,707 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-28 02:15:54,707 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-28 02:15:54,708 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [807815296] [2024-11-28 02:15:54,708 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:54,709 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:15:54,709 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:54,709 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:15:54,710 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-28 02:15:54,710 INFO L87 Difference]: Start difference. First operand 440 states and 662 transitions. Second operand has 3 states, 3 states have (on average 23.0) internal successors, (69), 3 states have internal predecessors, (69), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:15:54,801 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:54,801 INFO L93 Difference]: Finished difference Result 928 states and 1416 transitions. [2024-11-28 02:15:54,805 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:15:54,806 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 23.0) internal successors, (69), 3 states have internal predecessors, (69), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 115 [2024-11-28 02:15:54,806 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:54,812 INFO L225 Difference]: With dead ends: 928 [2024-11-28 02:15:54,813 INFO L226 Difference]: Without dead ends: 514 [2024-11-28 02:15:54,820 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 119 GetRequests, 115 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-28 02:15:54,824 INFO L435 NwaCegarLoop]: 675 mSDtfsCounter, 134 mSDsluCounter, 614 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 152 SdHoareTripleChecker+Valid, 1289 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:54,824 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [152 Valid, 1289 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:54,826 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 514 states. [2024-11-28 02:15:54,880 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 514 to 506. [2024-11-28 02:15:54,884 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 506 states, 392 states have (on average 1.5535714285714286) internal successors, (609), 396 states have internal predecessors, (609), 85 states have call successors, (85), 28 states have call predecessors, (85), 28 states have return successors, (84), 83 states have call predecessors, (84), 84 states have call successors, (84) [2024-11-28 02:15:54,891 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 506 states to 506 states and 778 transitions. [2024-11-28 02:15:54,892 INFO L78 Accepts]: Start accepts. Automaton has 506 states and 778 transitions. Word has length 115 [2024-11-28 02:15:54,892 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:54,893 INFO L471 AbstractCegarLoop]: Abstraction has 506 states and 778 transitions. [2024-11-28 02:15:54,893 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 23.0) internal successors, (69), 3 states have internal predecessors, (69), 2 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:15:54,895 INFO L276 IsEmpty]: Start isEmpty. Operand 506 states and 778 transitions. [2024-11-28 02:15:54,903 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 117 [2024-11-28 02:15:54,903 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:54,903 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:54,914 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-28 02:15:55,103 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable1 [2024-11-28 02:15:55,104 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:55,104 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:55,105 INFO L85 PathProgramCache]: Analyzing trace with hash 841564966, now seen corresponding path program 1 times [2024-11-28 02:15:55,105 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:55,105 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [418900257] [2024-11-28 02:15:55,105 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:55,105 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:55,150 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:55,469 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-28 02:15:55,470 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:55,470 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [418900257] [2024-11-28 02:15:55,471 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [418900257] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-28 02:15:55,471 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1850785944] [2024-11-28 02:15:55,471 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:55,471 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:15:55,471 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:15:55,475 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-28 02:15:55,479 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-28 02:15:55,857 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:55,862 INFO L256 TraceCheckSpWp]: Trace formula consists of 1119 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-28 02:15:55,867 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-28 02:15:55,933 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-28 02:15:55,933 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-28 02:15:55,933 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1850785944] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:55,933 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-28 02:15:55,934 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8 [2024-11-28 02:15:55,934 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [160274104] [2024-11-28 02:15:55,934 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:55,934 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:15:55,934 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:55,935 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:15:55,935 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-28 02:15:55,936 INFO L87 Difference]: Start difference. First operand 506 states and 778 transitions. Second operand has 5 states, 4 states have (on average 19.75) internal successors, (79), 5 states have internal predecessors, (79), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:56,045 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:56,045 INFO L93 Difference]: Finished difference Result 1003 states and 1546 transitions. [2024-11-28 02:15:56,046 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:15:56,046 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 19.75) internal successors, (79), 5 states have internal predecessors, (79), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) Word has length 116 [2024-11-28 02:15:56,046 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:56,052 INFO L225 Difference]: With dead ends: 1003 [2024-11-28 02:15:56,052 INFO L226 Difference]: Without dead ends: 508 [2024-11-28 02:15:56,054 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 120 GetRequests, 114 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-28 02:15:56,056 INFO L435 NwaCegarLoop]: 653 mSDtfsCounter, 2 mSDsluCounter, 1948 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2601 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:56,057 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2601 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:56,058 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 508 states. [2024-11-28 02:15:56,086 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 508 to 508. [2024-11-28 02:15:56,087 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 508 states, 393 states have (on average 1.5521628498727735) internal successors, (610), 398 states have internal predecessors, (610), 85 states have call successors, (85), 28 states have call predecessors, (85), 29 states have return successors, (86), 83 states have call predecessors, (86), 84 states have call successors, (86) [2024-11-28 02:15:56,094 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 508 states to 508 states and 781 transitions. [2024-11-28 02:15:56,095 INFO L78 Accepts]: Start accepts. Automaton has 508 states and 781 transitions. Word has length 116 [2024-11-28 02:15:56,097 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:56,097 INFO L471 AbstractCegarLoop]: Abstraction has 508 states and 781 transitions. [2024-11-28 02:15:56,097 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 19.75) internal successors, (79), 5 states have internal predecessors, (79), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:56,098 INFO L276 IsEmpty]: Start isEmpty. Operand 508 states and 781 transitions. [2024-11-28 02:15:56,101 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 118 [2024-11-28 02:15:56,104 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:56,105 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:56,118 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-28 02:15:56,305 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable2 [2024-11-28 02:15:56,306 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:56,306 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:56,306 INFO L85 PathProgramCache]: Analyzing trace with hash 968583721, now seen corresponding path program 1 times [2024-11-28 02:15:56,306 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:56,306 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [552592254] [2024-11-28 02:15:56,306 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:56,307 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:56,369 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:56,596 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 17 trivial. 0 not checked. [2024-11-28 02:15:56,596 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:56,597 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [552592254] [2024-11-28 02:15:56,597 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [552592254] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-28 02:15:56,597 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1028093229] [2024-11-28 02:15:56,597 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:56,597 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:15:56,597 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:15:56,602 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-28 02:15:56,603 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-28 02:15:57,007 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:57,011 INFO L256 TraceCheckSpWp]: Trace formula consists of 1120 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-28 02:15:57,018 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-28 02:15:57,082 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-28 02:15:57,082 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-28 02:15:57,082 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1028093229] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:57,082 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-28 02:15:57,083 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11 [2024-11-28 02:15:57,083 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1262189385] [2024-11-28 02:15:57,083 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:57,083 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:15:57,083 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:57,084 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:15:57,084 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-28 02:15:57,084 INFO L87 Difference]: Start difference. First operand 508 states and 781 transitions. Second operand has 5 states, 5 states have (on average 16.2) internal successors, (81), 5 states have internal predecessors, (81), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:57,178 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:57,178 INFO L93 Difference]: Finished difference Result 1005 states and 1551 transitions. [2024-11-28 02:15:57,179 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:15:57,179 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 16.2) internal successors, (81), 5 states have internal predecessors, (81), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 117 [2024-11-28 02:15:57,179 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:57,183 INFO L225 Difference]: With dead ends: 1005 [2024-11-28 02:15:57,183 INFO L226 Difference]: Without dead ends: 510 [2024-11-28 02:15:57,185 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 124 GetRequests, 115 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-28 02:15:57,186 INFO L435 NwaCegarLoop]: 651 mSDtfsCounter, 2 mSDsluCounter, 1936 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2587 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:57,186 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2587 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:57,192 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 510 states. [2024-11-28 02:15:57,222 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 510 to 510. [2024-11-28 02:15:57,225 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 510 states, 394 states have (on average 1.5507614213197969) internal successors, (611), 400 states have internal predecessors, (611), 85 states have call successors, (85), 28 states have call predecessors, (85), 30 states have return successors, (91), 83 states have call predecessors, (91), 84 states have call successors, (91) [2024-11-28 02:15:57,230 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 510 states to 510 states and 787 transitions. [2024-11-28 02:15:57,231 INFO L78 Accepts]: Start accepts. Automaton has 510 states and 787 transitions. Word has length 117 [2024-11-28 02:15:57,231 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:57,231 INFO L471 AbstractCegarLoop]: Abstraction has 510 states and 787 transitions. [2024-11-28 02:15:57,231 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 16.2) internal successors, (81), 5 states have internal predecessors, (81), 3 states have call successors, (17), 2 states have call predecessors, (17), 3 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:57,231 INFO L276 IsEmpty]: Start isEmpty. Operand 510 states and 787 transitions. [2024-11-28 02:15:57,236 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 119 [2024-11-28 02:15:57,236 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:57,236 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:57,248 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Forceful destruction successful, exit code 0 [2024-11-28 02:15:57,440 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:15:57,440 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:57,441 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:57,441 INFO L85 PathProgramCache]: Analyzing trace with hash -611487981, now seen corresponding path program 1 times [2024-11-28 02:15:57,441 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:57,441 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [977110260] [2024-11-28 02:15:57,441 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:57,441 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:57,476 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:57,674 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 23 trivial. 0 not checked. [2024-11-28 02:15:57,674 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:57,674 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [977110260] [2024-11-28 02:15:57,674 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [977110260] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:57,675 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:15:57,675 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-28 02:15:57,675 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [953055234] [2024-11-28 02:15:57,675 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:57,676 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:15:57,676 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:57,676 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:15:57,677 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:57,677 INFO L87 Difference]: Start difference. First operand 510 states and 787 transitions. Second operand has 5 states, 4 states have (on average 19.25) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:57,759 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:57,759 INFO L93 Difference]: Finished difference Result 997 states and 1542 transitions. [2024-11-28 02:15:57,759 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:15:57,760 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 19.25) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) Word has length 118 [2024-11-28 02:15:57,760 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:57,766 INFO L225 Difference]: With dead ends: 997 [2024-11-28 02:15:57,766 INFO L226 Difference]: Without dead ends: 510 [2024-11-28 02:15:57,769 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:57,770 INFO L435 NwaCegarLoop]: 654 mSDtfsCounter, 2 mSDsluCounter, 1951 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2605 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:57,771 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2605 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:57,772 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 510 states. [2024-11-28 02:15:57,823 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 510 to 510. [2024-11-28 02:15:57,826 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 510 states, 394 states have (on average 1.5507614213197969) internal successors, (611), 400 states have internal predecessors, (611), 85 states have call successors, (85), 28 states have call predecessors, (85), 30 states have return successors, (90), 83 states have call predecessors, (90), 84 states have call successors, (90) [2024-11-28 02:15:57,834 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 510 states to 510 states and 786 transitions. [2024-11-28 02:15:57,835 INFO L78 Accepts]: Start accepts. Automaton has 510 states and 786 transitions. Word has length 118 [2024-11-28 02:15:57,836 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:57,836 INFO L471 AbstractCegarLoop]: Abstraction has 510 states and 786 transitions. [2024-11-28 02:15:57,837 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 19.25) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:57,837 INFO L276 IsEmpty]: Start isEmpty. Operand 510 states and 786 transitions. [2024-11-28 02:15:57,841 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 120 [2024-11-28 02:15:57,841 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:57,841 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:57,842 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-28 02:15:57,842 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:57,842 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:57,842 INFO L85 PathProgramCache]: Analyzing trace with hash 371098744, now seen corresponding path program 2 times [2024-11-28 02:15:57,843 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:57,843 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1771296633] [2024-11-28 02:15:57,845 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-11-28 02:15:57,845 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:57,905 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-11-28 02:15:57,905 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-28 02:15:58,071 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-28 02:15:58,072 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:58,072 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1771296633] [2024-11-28 02:15:58,072 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1771296633] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:58,072 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:15:58,072 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-28 02:15:58,072 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [731261525] [2024-11-28 02:15:58,072 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:58,072 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:15:58,072 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:58,073 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:15:58,073 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:58,073 INFO L87 Difference]: Start difference. First operand 510 states and 786 transitions. Second operand has 5 states, 5 states have (on average 15.4) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:58,156 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:58,156 INFO L93 Difference]: Finished difference Result 995 states and 1537 transitions. [2024-11-28 02:15:58,157 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:15:58,157 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 15.4) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 119 [2024-11-28 02:15:58,157 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:58,161 INFO L225 Difference]: With dead ends: 995 [2024-11-28 02:15:58,162 INFO L226 Difference]: Without dead ends: 510 [2024-11-28 02:15:58,164 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:58,164 INFO L435 NwaCegarLoop]: 652 mSDtfsCounter, 2 mSDsluCounter, 1939 mSDsCounter, 0 mSdLazyCounter, 45 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2591 SdHoareTripleChecker+Invalid, 45 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 45 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:58,165 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2591 Invalid, 45 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 45 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:58,166 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 510 states. [2024-11-28 02:15:58,185 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 510 to 510. [2024-11-28 02:15:58,186 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 510 states, 394 states have (on average 1.5507614213197969) internal successors, (611), 400 states have internal predecessors, (611), 85 states have call successors, (85), 28 states have call predecessors, (85), 30 states have return successors, (89), 83 states have call predecessors, (89), 84 states have call successors, (89) [2024-11-28 02:15:58,191 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 510 states to 510 states and 785 transitions. [2024-11-28 02:15:58,192 INFO L78 Accepts]: Start accepts. Automaton has 510 states and 785 transitions. Word has length 119 [2024-11-28 02:15:58,192 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:58,192 INFO L471 AbstractCegarLoop]: Abstraction has 510 states and 785 transitions. [2024-11-28 02:15:58,192 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 15.4) internal successors, (77), 5 states have internal predecessors, (77), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:58,193 INFO L276 IsEmpty]: Start isEmpty. Operand 510 states and 785 transitions. [2024-11-28 02:15:58,195 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 121 [2024-11-28 02:15:58,195 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:58,196 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:58,196 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-28 02:15:58,196 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:58,196 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:58,197 INFO L85 PathProgramCache]: Analyzing trace with hash 1035242116, now seen corresponding path program 3 times [2024-11-28 02:15:58,197 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:58,197 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1907257149] [2024-11-28 02:15:58,197 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-28 02:15:58,197 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:58,246 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-11-28 02:15:58,246 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-28 02:15:58,384 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-28 02:15:58,384 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:58,385 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1907257149] [2024-11-28 02:15:58,385 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1907257149] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:58,385 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:15:58,385 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-28 02:15:58,385 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1351312302] [2024-11-28 02:15:58,385 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:58,385 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:15:58,386 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:58,386 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:15:58,386 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:58,386 INFO L87 Difference]: Start difference. First operand 510 states and 785 transitions. Second operand has 5 states, 5 states have (on average 15.6) internal successors, (78), 5 states have internal predecessors, (78), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:58,478 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:58,478 INFO L93 Difference]: Finished difference Result 997 states and 1543 transitions. [2024-11-28 02:15:58,479 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:15:58,479 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 15.6) internal successors, (78), 5 states have internal predecessors, (78), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) Word has length 120 [2024-11-28 02:15:58,480 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:58,485 INFO L225 Difference]: With dead ends: 997 [2024-11-28 02:15:58,486 INFO L226 Difference]: Without dead ends: 512 [2024-11-28 02:15:58,488 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:58,490 INFO L435 NwaCegarLoop]: 655 mSDtfsCounter, 1 mSDsluCounter, 1947 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2602 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:58,490 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2602 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:58,492 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 512 states. [2024-11-28 02:15:58,519 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 512 to 512. [2024-11-28 02:15:58,520 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 512 states, 395 states have (on average 1.549367088607595) internal successors, (612), 402 states have internal predecessors, (612), 85 states have call successors, (85), 28 states have call predecessors, (85), 31 states have return successors, (94), 83 states have call predecessors, (94), 84 states have call successors, (94) [2024-11-28 02:15:58,525 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 512 states to 512 states and 791 transitions. [2024-11-28 02:15:58,527 INFO L78 Accepts]: Start accepts. Automaton has 512 states and 791 transitions. Word has length 120 [2024-11-28 02:15:58,527 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:58,527 INFO L471 AbstractCegarLoop]: Abstraction has 512 states and 791 transitions. [2024-11-28 02:15:58,527 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 15.6) internal successors, (78), 5 states have internal predecessors, (78), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 3 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:58,528 INFO L276 IsEmpty]: Start isEmpty. Operand 512 states and 791 transitions. [2024-11-28 02:15:58,530 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-28 02:15:58,530 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:58,530 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:58,531 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-28 02:15:58,531 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:58,531 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:58,531 INFO L85 PathProgramCache]: Analyzing trace with hash -2048532973, now seen corresponding path program 1 times [2024-11-28 02:15:58,532 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:58,532 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [228734757] [2024-11-28 02:15:58,532 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:58,532 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:58,574 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:58,736 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-28 02:15:58,737 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:58,737 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [228734757] [2024-11-28 02:15:58,737 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [228734757] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:15:58,737 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:15:58,737 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-28 02:15:58,737 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1426642814] [2024-11-28 02:15:58,737 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:15:58,738 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:15:58,738 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:58,738 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:15:58,739 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:58,739 INFO L87 Difference]: Start difference. First operand 512 states and 791 transitions. Second operand has 5 states, 4 states have (on average 20.0) internal successors, (80), 5 states have internal predecessors, (80), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:58,814 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:58,815 INFO L93 Difference]: Finished difference Result 1003 states and 1553 transitions. [2024-11-28 02:15:58,815 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:15:58,815 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 20.0) internal successors, (80), 5 states have internal predecessors, (80), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) Word has length 121 [2024-11-28 02:15:58,816 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:58,820 INFO L225 Difference]: With dead ends: 1003 [2024-11-28 02:15:58,820 INFO L226 Difference]: Without dead ends: 514 [2024-11-28 02:15:58,822 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:15:58,823 INFO L435 NwaCegarLoop]: 655 mSDtfsCounter, 1 mSDsluCounter, 1953 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2608 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:58,823 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2608 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:15:58,825 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 514 states. [2024-11-28 02:15:58,845 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 514 to 514. [2024-11-28 02:15:58,846 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 514 states, 396 states have (on average 1.547979797979798) internal successors, (613), 404 states have internal predecessors, (613), 85 states have call successors, (85), 28 states have call predecessors, (85), 32 states have return successors, (96), 83 states have call predecessors, (96), 84 states have call successors, (96) [2024-11-28 02:15:58,851 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 514 states to 514 states and 794 transitions. [2024-11-28 02:15:58,852 INFO L78 Accepts]: Start accepts. Automaton has 514 states and 794 transitions. Word has length 121 [2024-11-28 02:15:58,853 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:58,853 INFO L471 AbstractCegarLoop]: Abstraction has 514 states and 794 transitions. [2024-11-28 02:15:58,853 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 20.0) internal successors, (80), 5 states have internal predecessors, (80), 3 states have call successors, (17), 2 states have call predecessors, (17), 2 states have return successors, (14), 2 states have call predecessors, (14), 3 states have call successors, (14) [2024-11-28 02:15:58,853 INFO L276 IsEmpty]: Start isEmpty. Operand 514 states and 794 transitions. [2024-11-28 02:15:58,856 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 123 [2024-11-28 02:15:58,856 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:58,857 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:58,857 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-28 02:15:58,857 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:15:58,858 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:15:58,858 INFO L85 PathProgramCache]: Analyzing trace with hash 1536483241, now seen corresponding path program 1 times [2024-11-28 02:15:58,858 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:15:58,858 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1759373942] [2024-11-28 02:15:58,858 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:58,858 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:15:58,893 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:59,064 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:15:59,064 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:15:59,065 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1759373942] [2024-11-28 02:15:59,065 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1759373942] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-28 02:15:59,065 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1782783459] [2024-11-28 02:15:59,065 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:15:59,065 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:15:59,065 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:15:59,067 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-28 02:15:59,072 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-28 02:15:59,449 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:15:59,454 INFO L256 TraceCheckSpWp]: Trace formula consists of 1125 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-28 02:15:59,458 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-28 02:15:59,489 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:15:59,489 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-28 02:15:59,621 INFO L134 CoverageAnalysis]: Checked inductivity of 31 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:15:59,623 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1782783459] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-28 02:15:59,624 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-28 02:15:59,624 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2024-11-28 02:15:59,624 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [696299564] [2024-11-28 02:15:59,624 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-28 02:15:59,625 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-28 02:15:59,625 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:15:59,626 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-28 02:15:59,626 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-28 02:15:59,626 INFO L87 Difference]: Start difference. First operand 514 states and 794 transitions. Second operand has 7 states, 7 states have (on average 15.857142857142858) internal successors, (111), 7 states have internal predecessors, (111), 2 states have call successors, (25), 2 states have call predecessors, (25), 2 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) [2024-11-28 02:15:59,862 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:15:59,863 INFO L93 Difference]: Finished difference Result 1198 states and 1912 transitions. [2024-11-28 02:15:59,863 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-28 02:15:59,863 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 15.857142857142858) internal successors, (111), 7 states have internal predecessors, (111), 2 states have call successors, (25), 2 states have call predecessors, (25), 2 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) Word has length 122 [2024-11-28 02:15:59,864 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:15:59,871 INFO L225 Difference]: With dead ends: 1198 [2024-11-28 02:15:59,871 INFO L226 Difference]: Without dead ends: 950 [2024-11-28 02:15:59,872 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 246 GetRequests, 241 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-28 02:15:59,873 INFO L435 NwaCegarLoop]: 693 mSDtfsCounter, 457 mSDsluCounter, 1656 mSDsCounter, 0 mSdLazyCounter, 75 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 511 SdHoareTripleChecker+Valid, 2349 SdHoareTripleChecker+Invalid, 85 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 75 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-28 02:15:59,873 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [511 Valid, 2349 Invalid, 85 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 75 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-28 02:15:59,875 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 950 states. [2024-11-28 02:15:59,931 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 950 to 926. [2024-11-28 02:15:59,933 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 926 states, 729 states have (on average 1.6186556927297668) internal successors, (1180), 737 states have internal predecessors, (1180), 164 states have call successors, (164), 28 states have call predecessors, (164), 32 states have return successors, (185), 162 states have call predecessors, (185), 163 states have call successors, (185) [2024-11-28 02:15:59,941 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 926 states to 926 states and 1529 transitions. [2024-11-28 02:15:59,942 INFO L78 Accepts]: Start accepts. Automaton has 926 states and 1529 transitions. Word has length 122 [2024-11-28 02:15:59,942 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:15:59,942 INFO L471 AbstractCegarLoop]: Abstraction has 926 states and 1529 transitions. [2024-11-28 02:15:59,943 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 15.857142857142858) internal successors, (111), 7 states have internal predecessors, (111), 2 states have call successors, (25), 2 states have call predecessors, (25), 2 states have return successors, (22), 2 states have call predecessors, (22), 2 states have call successors, (22) [2024-11-28 02:15:59,943 INFO L276 IsEmpty]: Start isEmpty. Operand 926 states and 1529 transitions. [2024-11-28 02:15:59,949 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-28 02:15:59,949 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:15:59,949 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:15:59,960 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-28 02:16:00,150 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b1d59543-750a-4b6e-9b3d-5e0e23fdaf9d/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-28 02:16:00,150 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:00,150 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:00,151 INFO L85 PathProgramCache]: Analyzing trace with hash -304663615, now seen corresponding path program 1 times [2024-11-28 02:16:00,151 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:00,151 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1552451069] [2024-11-28 02:16:00,151 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:00,151 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:00,195 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:00,264 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:00,264 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:00,264 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1552451069] [2024-11-28 02:16:00,264 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1552451069] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:00,264 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:00,265 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:00,265 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [831661611] [2024-11-28 02:16:00,265 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:00,265 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:00,265 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:00,266 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:00,266 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:00,266 INFO L87 Difference]: Start difference. First operand 926 states and 1529 transitions. Second operand has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:00,346 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:00,347 INFO L93 Difference]: Finished difference Result 2202 states and 3690 transitions. [2024-11-28 02:16:00,347 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:00,347 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 129 [2024-11-28 02:16:00,347 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:00,359 INFO L225 Difference]: With dead ends: 2202 [2024-11-28 02:16:00,359 INFO L226 Difference]: Without dead ends: 1342 [2024-11-28 02:16:00,364 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:00,365 INFO L435 NwaCegarLoop]: 665 mSDtfsCounter, 132 mSDsluCounter, 656 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 150 SdHoareTripleChecker+Valid, 1321 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:00,365 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [150 Valid, 1321 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:00,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1342 states. [2024-11-28 02:16:00,449 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1342 to 1334. [2024-11-28 02:16:00,452 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1334 states, 1058 states have (on average 1.6379962192816635) internal successors, (1733), 1066 states have internal predecessors, (1733), 243 states have call successors, (243), 28 states have call predecessors, (243), 32 states have return successors, (274), 241 states have call predecessors, (274), 242 states have call successors, (274) [2024-11-28 02:16:00,462 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1334 states to 1334 states and 2250 transitions. [2024-11-28 02:16:00,464 INFO L78 Accepts]: Start accepts. Automaton has 1334 states and 2250 transitions. Word has length 129 [2024-11-28 02:16:00,464 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:00,464 INFO L471 AbstractCegarLoop]: Abstraction has 1334 states and 2250 transitions. [2024-11-28 02:16:00,465 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.333333333333332) internal successors, (85), 3 states have internal predecessors, (85), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:00,465 INFO L276 IsEmpty]: Start isEmpty. Operand 1334 states and 2250 transitions. [2024-11-28 02:16:00,474 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 131 [2024-11-28 02:16:00,474 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:00,474 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:00,474 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-28 02:16:00,475 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:00,475 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:00,475 INFO L85 PathProgramCache]: Analyzing trace with hash -809510575, now seen corresponding path program 1 times [2024-11-28 02:16:00,475 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:00,475 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [61528182] [2024-11-28 02:16:00,475 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:00,476 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:00,511 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:00,559 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:00,559 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:00,559 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [61528182] [2024-11-28 02:16:00,560 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [61528182] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:00,560 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:00,560 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:00,560 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [567618564] [2024-11-28 02:16:00,560 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:00,560 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:00,560 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:00,561 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:00,561 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:00,561 INFO L87 Difference]: Start difference. First operand 1334 states and 2250 transitions. Second operand has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:00,683 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:00,683 INFO L93 Difference]: Finished difference Result 3199 states and 5435 transitions. [2024-11-28 02:16:00,684 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:00,684 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 130 [2024-11-28 02:16:00,684 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:00,697 INFO L225 Difference]: With dead ends: 3199 [2024-11-28 02:16:00,697 INFO L226 Difference]: Without dead ends: 1982 [2024-11-28 02:16:00,702 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:00,703 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 130 mSDsluCounter, 654 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 148 SdHoareTripleChecker+Valid, 1314 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:00,703 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [148 Valid, 1314 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:00,706 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1982 states. [2024-11-28 02:16:00,816 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1982 to 1974. [2024-11-28 02:16:00,821 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1974 states, 1579 states have (on average 1.6516782773907537) internal successors, (2608), 1587 states have internal predecessors, (2608), 362 states have call successors, (362), 28 states have call predecessors, (362), 32 states have return successors, (393), 360 states have call predecessors, (393), 361 states have call successors, (393) [2024-11-28 02:16:00,840 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1974 states to 1974 states and 3363 transitions. [2024-11-28 02:16:00,842 INFO L78 Accepts]: Start accepts. Automaton has 1974 states and 3363 transitions. Word has length 130 [2024-11-28 02:16:00,842 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:00,842 INFO L471 AbstractCegarLoop]: Abstraction has 1974 states and 3363 transitions. [2024-11-28 02:16:00,843 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 28.666666666666668) internal successors, (86), 3 states have internal predecessors, (86), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:00,843 INFO L276 IsEmpty]: Start isEmpty. Operand 1974 states and 3363 transitions. [2024-11-28 02:16:00,856 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 132 [2024-11-28 02:16:00,856 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:00,856 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:00,857 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-28 02:16:00,857 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:00,857 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:00,857 INFO L85 PathProgramCache]: Analyzing trace with hash 1693947679, now seen corresponding path program 1 times [2024-11-28 02:16:00,857 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:00,857 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [565483533] [2024-11-28 02:16:00,858 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:00,858 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:00,895 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:00,957 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:00,957 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:00,958 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [565483533] [2024-11-28 02:16:00,958 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [565483533] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:00,958 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:00,958 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:00,958 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1258128485] [2024-11-28 02:16:00,958 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:00,959 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:00,960 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:00,960 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:00,961 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:00,962 INFO L87 Difference]: Start difference. First operand 1974 states and 3363 transitions. Second operand has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:01,127 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:01,127 INFO L93 Difference]: Finished difference Result 4701 states and 8075 transitions. [2024-11-28 02:16:01,128 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:01,128 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 131 [2024-11-28 02:16:01,129 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:01,149 INFO L225 Difference]: With dead ends: 4701 [2024-11-28 02:16:01,149 INFO L226 Difference]: Without dead ends: 2965 [2024-11-28 02:16:01,156 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:01,156 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 128 mSDsluCounter, 651 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 146 SdHoareTripleChecker+Valid, 1311 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:01,157 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [146 Valid, 1311 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:01,160 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2965 states. [2024-11-28 02:16:01,301 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2965 to 2957. [2024-11-28 02:16:01,308 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2957 states, 2400 states have (on average 1.6625) internal successors, (3990), 2408 states have internal predecessors, (3990), 524 states have call successors, (524), 28 states have call predecessors, (524), 32 states have return successors, (571), 522 states have call predecessors, (571), 523 states have call successors, (571) [2024-11-28 02:16:01,328 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2957 states to 2957 states and 5085 transitions. [2024-11-28 02:16:01,331 INFO L78 Accepts]: Start accepts. Automaton has 2957 states and 5085 transitions. Word has length 131 [2024-11-28 02:16:01,331 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:01,331 INFO L471 AbstractCegarLoop]: Abstraction has 2957 states and 5085 transitions. [2024-11-28 02:16:01,332 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.0) internal successors, (87), 3 states have internal predecessors, (87), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:01,332 INFO L276 IsEmpty]: Start isEmpty. Operand 2957 states and 5085 transitions. [2024-11-28 02:16:01,351 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 133 [2024-11-28 02:16:01,351 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:01,351 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:01,351 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-28 02:16:01,351 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:01,352 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:01,352 INFO L85 PathProgramCache]: Analyzing trace with hash 1747371536, now seen corresponding path program 1 times [2024-11-28 02:16:01,352 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:01,352 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1805979855] [2024-11-28 02:16:01,352 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:01,352 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:01,386 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:01,449 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:01,449 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:01,450 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1805979855] [2024-11-28 02:16:01,450 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1805979855] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:01,450 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:01,450 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:01,450 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2043932395] [2024-11-28 02:16:01,450 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:01,451 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:01,451 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:01,451 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:01,452 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:01,452 INFO L87 Difference]: Start difference. First operand 2957 states and 5085 transitions. Second operand has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:01,687 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:01,688 INFO L93 Difference]: Finished difference Result 7079 states and 12261 transitions. [2024-11-28 02:16:01,688 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:01,688 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 132 [2024-11-28 02:16:01,689 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:01,723 INFO L225 Difference]: With dead ends: 7079 [2024-11-28 02:16:01,724 INFO L226 Difference]: Without dead ends: 4557 [2024-11-28 02:16:01,736 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:01,737 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 126 mSDsluCounter, 651 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1311 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:01,738 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1311 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:01,744 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4557 states. [2024-11-28 02:16:02,051 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4557 to 4549. [2024-11-28 02:16:02,062 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4549 states, 3747 states have (on average 1.6701361088871096) internal successors, (6258), 3755 states have internal predecessors, (6258), 769 states have call successors, (769), 28 states have call predecessors, (769), 32 states have return successors, (842), 767 states have call predecessors, (842), 768 states have call successors, (842) [2024-11-28 02:16:02,097 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4549 states to 4549 states and 7869 transitions. [2024-11-28 02:16:02,101 INFO L78 Accepts]: Start accepts. Automaton has 4549 states and 7869 transitions. Word has length 132 [2024-11-28 02:16:02,101 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:02,101 INFO L471 AbstractCegarLoop]: Abstraction has 4549 states and 7869 transitions. [2024-11-28 02:16:02,102 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.333333333333332) internal successors, (88), 3 states have internal predecessors, (88), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:02,102 INFO L276 IsEmpty]: Start isEmpty. Operand 4549 states and 7869 transitions. [2024-11-28 02:16:02,130 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 134 [2024-11-28 02:16:02,130 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:02,130 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:02,130 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-11-28 02:16:02,130 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:02,131 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:02,131 INFO L85 PathProgramCache]: Analyzing trace with hash 39249571, now seen corresponding path program 1 times [2024-11-28 02:16:02,131 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:02,131 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [387845808] [2024-11-28 02:16:02,131 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:02,131 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:02,177 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:02,243 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:02,244 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:02,244 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [387845808] [2024-11-28 02:16:02,244 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [387845808] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:02,244 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:02,244 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:02,244 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [459959166] [2024-11-28 02:16:02,244 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:02,245 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:02,245 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:02,246 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:02,246 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:02,246 INFO L87 Difference]: Start difference. First operand 4549 states and 7869 transitions. Second operand has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:02,608 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:02,608 INFO L93 Difference]: Finished difference Result 11048 states and 19244 transitions. [2024-11-28 02:16:02,608 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:02,609 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 133 [2024-11-28 02:16:02,609 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:02,661 INFO L225 Difference]: With dead ends: 11048 [2024-11-28 02:16:02,661 INFO L226 Difference]: Without dead ends: 7235 [2024-11-28 02:16:02,678 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:02,678 INFO L435 NwaCegarLoop]: 671 mSDtfsCounter, 124 mSDsluCounter, 650 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1321 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:02,679 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1321 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:02,686 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 7235 states. [2024-11-28 02:16:03,144 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 7235 to 7227. [2024-11-28 02:16:03,166 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 7227 states, 5932 states have (on average 1.6702629804450437) internal successors, (9908), 5940 states have internal predecessors, (9908), 1262 states have call successors, (1262), 28 states have call predecessors, (1262), 32 states have return successors, (1379), 1260 states have call predecessors, (1379), 1261 states have call successors, (1379) [2024-11-28 02:16:03,204 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 7227 states to 7227 states and 12549 transitions. [2024-11-28 02:16:03,208 INFO L78 Accepts]: Start accepts. Automaton has 7227 states and 12549 transitions. Word has length 133 [2024-11-28 02:16:03,209 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:03,209 INFO L471 AbstractCegarLoop]: Abstraction has 7227 states and 12549 transitions. [2024-11-28 02:16:03,209 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 29.666666666666668) internal successors, (89), 3 states have internal predecessors, (89), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:03,209 INFO L276 IsEmpty]: Start isEmpty. Operand 7227 states and 12549 transitions. [2024-11-28 02:16:03,241 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 135 [2024-11-28 02:16:03,241 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:03,242 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:03,242 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2024-11-28 02:16:03,242 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:03,243 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:03,243 INFO L85 PathProgramCache]: Analyzing trace with hash 181119628, now seen corresponding path program 1 times [2024-11-28 02:16:03,243 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:03,243 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1653753783] [2024-11-28 02:16:03,243 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:03,243 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:03,316 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:03,366 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:03,366 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:03,366 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1653753783] [2024-11-28 02:16:03,366 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1653753783] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:03,366 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:03,366 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:03,366 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2107622683] [2024-11-28 02:16:03,367 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:03,368 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:03,368 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:03,369 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:03,369 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:03,369 INFO L87 Difference]: Start difference. First operand 7227 states and 12549 transitions. Second operand has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:03,839 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:03,839 INFO L93 Difference]: Finished difference Result 18250 states and 31884 transitions. [2024-11-28 02:16:03,840 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:03,840 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 134 [2024-11-28 02:16:03,840 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:03,920 INFO L225 Difference]: With dead ends: 18250 [2024-11-28 02:16:03,920 INFO L226 Difference]: Without dead ends: 12120 [2024-11-28 02:16:03,945 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:03,946 INFO L435 NwaCegarLoop]: 667 mSDtfsCounter, 122 mSDsluCounter, 655 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1322 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:03,946 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1322 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:03,958 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 12120 states. [2024-11-28 02:16:04,656 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 12120 to 12112. [2024-11-28 02:16:04,688 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 12112 states, 9995 states have (on average 1.6712356178089045) internal successors, (16704), 10003 states have internal predecessors, (16704), 2084 states have call successors, (2084), 28 states have call predecessors, (2084), 32 states have return successors, (2279), 2082 states have call predecessors, (2279), 2083 states have call successors, (2279) [2024-11-28 02:16:04,770 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 12112 states to 12112 states and 21067 transitions. [2024-11-28 02:16:04,777 INFO L78 Accepts]: Start accepts. Automaton has 12112 states and 21067 transitions. Word has length 134 [2024-11-28 02:16:04,777 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:04,777 INFO L471 AbstractCegarLoop]: Abstraction has 12112 states and 21067 transitions. [2024-11-28 02:16:04,777 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.0) internal successors, (90), 3 states have internal predecessors, (90), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:04,778 INFO L276 IsEmpty]: Start isEmpty. Operand 12112 states and 21067 transitions. [2024-11-28 02:16:04,833 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 136 [2024-11-28 02:16:04,833 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:04,834 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:04,834 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2024-11-28 02:16:04,834 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:04,834 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:04,834 INFO L85 PathProgramCache]: Analyzing trace with hash -1127972811, now seen corresponding path program 1 times [2024-11-28 02:16:04,835 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:04,835 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [787811129] [2024-11-28 02:16:04,835 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:04,835 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:04,876 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:04,938 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:04,938 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:04,938 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [787811129] [2024-11-28 02:16:04,938 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [787811129] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:04,938 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:04,938 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:04,939 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1653651047] [2024-11-28 02:16:04,939 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:04,939 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:04,939 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:04,940 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:04,940 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:04,941 INFO L87 Difference]: Start difference. First operand 12112 states and 21067 transitions. Second operand has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:05,716 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:05,716 INFO L93 Difference]: Finished difference Result 28970 states and 50330 transitions. [2024-11-28 02:16:05,717 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:05,717 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 135 [2024-11-28 02:16:05,717 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:05,810 INFO L225 Difference]: With dead ends: 28970 [2024-11-28 02:16:05,810 INFO L226 Difference]: Without dead ends: 18907 [2024-11-28 02:16:05,848 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:05,849 INFO L435 NwaCegarLoop]: 662 mSDtfsCounter, 120 mSDsluCounter, 626 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1288 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:05,850 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1288 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:05,870 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18907 states. [2024-11-28 02:16:06,740 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18907 to 18899. [2024-11-28 02:16:06,780 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18899 states, 15579 states have (on average 1.648372809551319) internal successors, (25680), 15587 states have internal predecessors, (25680), 3287 states have call successors, (3287), 28 states have call predecessors, (3287), 32 states have return successors, (3626), 3285 states have call predecessors, (3626), 3286 states have call successors, (3626) [2024-11-28 02:16:06,935 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18899 states to 18899 states and 32593 transitions. [2024-11-28 02:16:06,943 INFO L78 Accepts]: Start accepts. Automaton has 18899 states and 32593 transitions. Word has length 135 [2024-11-28 02:16:06,943 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:06,944 INFO L471 AbstractCegarLoop]: Abstraction has 18899 states and 32593 transitions. [2024-11-28 02:16:06,945 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:06,945 INFO L276 IsEmpty]: Start isEmpty. Operand 18899 states and 32593 transitions. [2024-11-28 02:16:06,990 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2024-11-28 02:16:06,990 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:06,990 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:06,990 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2024-11-28 02:16:06,990 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:06,991 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:06,991 INFO L85 PathProgramCache]: Analyzing trace with hash 1856825899, now seen corresponding path program 1 times [2024-11-28 02:16:06,991 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:06,992 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [614783466] [2024-11-28 02:16:06,992 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:06,992 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:07,022 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:07,069 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:07,069 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:07,069 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [614783466] [2024-11-28 02:16:07,070 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [614783466] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:07,070 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:07,070 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:07,070 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1052732746] [2024-11-28 02:16:07,070 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:07,070 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:07,070 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:07,071 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:07,071 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:07,071 INFO L87 Difference]: Start difference. First operand 18899 states and 32593 transitions. Second operand has 3 states, 3 states have (on average 30.666666666666668) internal successors, (92), 3 states have internal predecessors, (92), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:08,285 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:08,286 INFO L93 Difference]: Finished difference Result 49962 states and 86470 transitions. [2024-11-28 02:16:08,286 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:08,286 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.666666666666668) internal successors, (92), 3 states have internal predecessors, (92), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 136 [2024-11-28 02:16:08,287 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:08,499 INFO L225 Difference]: With dead ends: 49962 [2024-11-28 02:16:08,499 INFO L226 Difference]: Without dead ends: 33725 [2024-11-28 02:16:08,571 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:08,571 INFO L435 NwaCegarLoop]: 660 mSDtfsCounter, 118 mSDsluCounter, 654 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1314 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:08,572 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1314 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:08,609 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 33725 states. [2024-11-28 02:16:10,135 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 33725 to 33717. [2024-11-28 02:16:10,204 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 33717 states, 27947 states have (on average 1.6452570937846638) internal successors, (45980), 27955 states have internal predecessors, (45980), 5737 states have call successors, (5737), 28 states have call predecessors, (5737), 32 states have return successors, (6350), 5735 states have call predecessors, (6350), 5736 states have call successors, (6350) [2024-11-28 02:16:10,370 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 33717 states to 33717 states and 58067 transitions. [2024-11-28 02:16:10,386 INFO L78 Accepts]: Start accepts. Automaton has 33717 states and 58067 transitions. Word has length 136 [2024-11-28 02:16:10,387 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:10,387 INFO L471 AbstractCegarLoop]: Abstraction has 33717 states and 58067 transitions. [2024-11-28 02:16:10,387 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.666666666666668) internal successors, (92), 3 states have internal predecessors, (92), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:10,388 INFO L276 IsEmpty]: Start isEmpty. Operand 33717 states and 58067 transitions. [2024-11-28 02:16:10,469 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 138 [2024-11-28 02:16:10,470 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:10,471 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:10,471 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2024-11-28 02:16:10,471 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:10,472 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:10,472 INFO L85 PathProgramCache]: Analyzing trace with hash -1314408165, now seen corresponding path program 1 times [2024-11-28 02:16:10,472 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:10,473 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1854493387] [2024-11-28 02:16:10,473 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:10,473 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:10,521 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:10,590 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:10,591 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:10,591 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1854493387] [2024-11-28 02:16:10,591 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1854493387] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:10,591 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:10,591 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:10,591 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [50934785] [2024-11-28 02:16:10,591 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:10,592 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:10,593 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:10,594 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:10,594 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:10,594 INFO L87 Difference]: Start difference. First operand 33717 states and 58067 transitions. Second operand has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:12,838 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:12,838 INFO L93 Difference]: Finished difference Result 91999 states and 158897 transitions. [2024-11-28 02:16:12,839 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:12,839 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 137 [2024-11-28 02:16:12,839 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:13,213 INFO L225 Difference]: With dead ends: 91999 [2024-11-28 02:16:13,213 INFO L226 Difference]: Without dead ends: 61823 [2024-11-28 02:16:13,333 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:13,333 INFO L435 NwaCegarLoop]: 669 mSDtfsCounter, 116 mSDsluCounter, 655 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1324 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:13,334 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1324 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:13,384 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61823 states. [2024-11-28 02:16:16,483 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61823 to 61815. [2024-11-28 02:16:16,570 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61815 states, 51532 states have (on average 1.6409609562989986) internal successors, (84562), 51540 states have internal predecessors, (84562), 10250 states have call successors, (10250), 28 states have call predecessors, (10250), 32 states have return successors, (11395), 10248 states have call predecessors, (11395), 10249 states have call successors, (11395) [2024-11-28 02:16:16,777 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61815 states to 61815 states and 106207 transitions. [2024-11-28 02:16:16,800 INFO L78 Accepts]: Start accepts. Automaton has 61815 states and 106207 transitions. Word has length 137 [2024-11-28 02:16:16,801 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:16,801 INFO L471 AbstractCegarLoop]: Abstraction has 61815 states and 106207 transitions. [2024-11-28 02:16:16,801 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:16,801 INFO L276 IsEmpty]: Start isEmpty. Operand 61815 states and 106207 transitions. [2024-11-28 02:16:16,859 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 139 [2024-11-28 02:16:16,859 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:16,860 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:16,860 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2024-11-28 02:16:16,860 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:16,860 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:16,860 INFO L85 PathProgramCache]: Analyzing trace with hash -893680181, now seen corresponding path program 1 times [2024-11-28 02:16:16,860 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:16,860 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1902763897] [2024-11-28 02:16:16,860 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:16,861 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:16,898 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:16,948 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:16,948 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:16,948 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1902763897] [2024-11-28 02:16:16,948 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1902763897] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:16,948 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:16,949 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:16:16,949 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [384342685] [2024-11-28 02:16:16,950 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:16,950 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:16:16,950 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:16,951 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:16:16,951 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:16,951 INFO L87 Difference]: Start difference. First operand 61815 states and 106207 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:19,964 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:19,965 INFO L93 Difference]: Finished difference Result 115856 states and 199443 transitions. [2024-11-28 02:16:19,965 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:16:19,965 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) Word has length 138 [2024-11-28 02:16:19,966 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:20,544 INFO L225 Difference]: With dead ends: 115856 [2024-11-28 02:16:20,545 INFO L226 Difference]: Without dead ends: 115608 [2024-11-28 02:16:20,592 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:16:20,593 INFO L435 NwaCegarLoop]: 669 mSDtfsCounter, 111 mSDsluCounter, 659 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1328 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:20,593 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1328 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:16:20,667 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 115608 states. [2024-11-28 02:16:24,473 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 115608 to 115600. [2024-11-28 02:16:24,576 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 115600 states, 96949 states have (on average 1.6355506503419324) internal successors, (158565), 96957 states have internal predecessors, (158565), 18618 states have call successors, (18618), 28 states have call predecessors, (18618), 32 states have return successors, (20809), 18616 states have call predecessors, (20809), 18617 states have call successors, (20809) [2024-11-28 02:16:25,287 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 115600 states to 115600 states and 197992 transitions. [2024-11-28 02:16:25,344 INFO L78 Accepts]: Start accepts. Automaton has 115600 states and 197992 transitions. Word has length 138 [2024-11-28 02:16:25,348 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:16:25,348 INFO L471 AbstractCegarLoop]: Abstraction has 115600 states and 197992 transitions. [2024-11-28 02:16:25,348 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (17), 2 states have call predecessors, (17), 1 states have return successors, (14), 2 states have call predecessors, (14), 2 states have call successors, (14) [2024-11-28 02:16:25,349 INFO L276 IsEmpty]: Start isEmpty. Operand 115600 states and 197992 transitions. [2024-11-28 02:16:25,455 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 140 [2024-11-28 02:16:25,456 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:16:25,456 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:16:25,456 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2024-11-28 02:16:25,456 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:16:25,457 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:16:25,457 INFO L85 PathProgramCache]: Analyzing trace with hash -429921028, now seen corresponding path program 1 times [2024-11-28 02:16:25,457 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:16:25,458 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [969661992] [2024-11-28 02:16:25,458 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:16:25,458 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:16:25,493 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:16:25,938 INFO L134 CoverageAnalysis]: Checked inductivity of 30 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-28 02:16:25,939 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:16:25,939 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [969661992] [2024-11-28 02:16:25,939 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [969661992] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:16:25,939 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:16:25,939 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [14] imperfect sequences [] total 14 [2024-11-28 02:16:25,940 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1699601802] [2024-11-28 02:16:25,941 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:16:25,941 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-11-28 02:16:25,941 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:16:25,942 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-11-28 02:16:25,942 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=157, Unknown=0, NotChecked=0, Total=182 [2024-11-28 02:16:25,942 INFO L87 Difference]: Start difference. First operand 115600 states and 197992 transitions. Second operand has 14 states, 12 states have (on average 7.916666666666667) internal successors, (95), 12 states have internal predecessors, (95), 6 states have call successors, (17), 3 states have call predecessors, (17), 4 states have return successors, (14), 6 states have call predecessors, (14), 6 states have call successors, (14) [2024-11-28 02:16:34,152 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:16:34,152 INFO L93 Difference]: Finished difference Result 230618 states and 400377 transitions. [2024-11-28 02:16:34,153 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 26 states. [2024-11-28 02:16:34,153 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 12 states have (on average 7.916666666666667) internal successors, (95), 12 states have internal predecessors, (95), 6 states have call successors, (17), 3 states have call predecessors, (17), 4 states have return successors, (14), 6 states have call predecessors, (14), 6 states have call successors, (14) Word has length 139 [2024-11-28 02:16:34,153 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:16:35,288 INFO L225 Difference]: With dead ends: 230618 [2024-11-28 02:16:35,289 INFO L226 Difference]: Without dead ends: 230376 [2024-11-28 02:16:35,375 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 36 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 30 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 125 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=159, Invalid=833, Unknown=0, NotChecked=0, Total=992 [2024-11-28 02:16:35,379 INFO L435 NwaCegarLoop]: 754 mSDtfsCounter, 2001 mSDsluCounter, 7990 mSDsCounter, 0 mSdLazyCounter, 1741 mSolverCounterSat, 684 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2001 SdHoareTripleChecker+Valid, 8744 SdHoareTripleChecker+Invalid, 2425 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 684 IncrementalHoareTripleChecker+Valid, 1741 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 2.3s IncrementalHoareTripleChecker+Time [2024-11-28 02:16:35,380 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2001 Valid, 8744 Invalid, 2425 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [684 Valid, 1741 Invalid, 0 Unknown, 0 Unchecked, 2.3s Time] [2024-11-28 02:16:35,553 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 230376 states.