./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/email_spec7_product29.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version d790fecc Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/email_spec7_product29.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 2586c6a9c5639b30d1f21b288976c8c026e2c567887902cc846265d5507c0a62 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-d790fec [2024-11-27 20:31:35,497 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-27 20:31:35,610 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-27 20:31:35,617 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-27 20:31:35,621 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-27 20:31:35,652 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-27 20:31:35,653 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-27 20:31:35,653 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-27 20:31:35,654 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-27 20:31:35,654 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-27 20:31:35,654 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-27 20:31:35,654 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-27 20:31:35,655 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-27 20:31:35,655 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-27 20:31:35,655 INFO L153 SettingsManager]: * Use SBE=true [2024-11-27 20:31:35,655 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-27 20:31:35,655 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-27 20:31:35,655 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-27 20:31:35,655 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2024-11-27 20:31:35,656 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-27 20:31:35,657 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-27 20:31:35,657 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-27 20:31:35,657 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-27 20:31:35,658 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-27 20:31:35,658 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-27 20:31:35,658 INFO L153 SettingsManager]: * Compute procedure contracts=false [2024-11-27 20:31:35,658 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-27 20:31:35,658 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-27 20:31:35,658 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-27 20:31:35,658 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-27 20:31:35,661 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-27 20:31:35,661 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-27 20:31:35,661 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-27 20:31:35,661 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 2586c6a9c5639b30d1f21b288976c8c026e2c567887902cc846265d5507c0a62 [2024-11-27 20:31:36,036 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-27 20:31:36,047 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-27 20:31:36,050 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-27 20:31:36,051 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-27 20:31:36,051 INFO L274 PluginConnector]: CDTParser initialized [2024-11-27 20:31:36,053 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/../../sv-benchmarks/c/product-lines/email_spec7_product29.cil.c [2024-11-27 20:31:39,697 INFO L533 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/data/eea526ec6/01bccb7196f943f4b225d9e73c892405/FLAG07beba20b [2024-11-27 20:31:40,199 INFO L384 CDTParser]: Found 1 translation units. [2024-11-27 20:31:40,200 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/sv-benchmarks/c/product-lines/email_spec7_product29.cil.c [2024-11-27 20:31:40,237 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/data/eea526ec6/01bccb7196f943f4b225d9e73c892405/FLAG07beba20b [2024-11-27 20:31:40,264 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/data/eea526ec6/01bccb7196f943f4b225d9e73c892405 [2024-11-27 20:31:40,267 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-27 20:31:40,269 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-27 20:31:40,272 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-27 20:31:40,274 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-27 20:31:40,280 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-27 20:31:40,281 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 27.11 08:31:40" (1/1) ... [2024-11-27 20:31:40,284 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@1c7405b and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:40, skipping insertion in model container [2024-11-27 20:31:40,284 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 27.11 08:31:40" (1/1) ... [2024-11-27 20:31:40,354 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-27 20:31:40,810 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/sv-benchmarks/c/product-lines/email_spec7_product29.cil.c[16949,16962] [2024-11-27 20:31:41,230 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-27 20:31:41,254 INFO L200 MainTranslator]: Completed pre-run [2024-11-27 20:31:41,264 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [48] [2024-11-27 20:31:41,266 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [368] [2024-11-27 20:31:41,266 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [734] [2024-11-27 20:31:41,266 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [743] [2024-11-27 20:31:41,267 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EncryptVerify_spec.i","") [959] [2024-11-27 20:31:41,267 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Client.i","") [978] [2024-11-27 20:31:41,267 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"ClientLib.i","") [1361] [2024-11-27 20:31:41,267 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Email.i","") [2425] [2024-11-27 20:31:41,267 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Util.i","") [2563] [2024-11-27 20:31:41,268 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"EmailLib.i","") [2580] [2024-11-27 20:31:41,268 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [2977] [2024-11-27 20:31:41,319 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/sv-benchmarks/c/product-lines/email_spec7_product29.cil.c[16949,16962] [2024-11-27 20:31:41,444 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-27 20:31:41,510 INFO L204 MainTranslator]: Completed translation [2024-11-27 20:31:41,511 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41 WrapperNode [2024-11-27 20:31:41,511 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-27 20:31:41,512 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-27 20:31:41,512 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-27 20:31:41,513 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-27 20:31:41,522 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,555 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,660 INFO L138 Inliner]: procedures = 131, calls = 210, calls flagged for inlining = 55, calls inlined = 47, statements flattened = 911 [2024-11-27 20:31:41,664 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-27 20:31:41,664 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-27 20:31:41,668 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-27 20:31:41,669 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-27 20:31:41,688 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,690 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,699 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,753 INFO L175 MemorySlicer]: Split 14 memory accesses to 4 slices as follows [2, 4, 4, 4]. 29 percent of accesses are in the largest equivalence class. The 14 initializations are split as follows [2, 4, 4, 4]. The 0 writes are split as follows [0, 0, 0, 0]. [2024-11-27 20:31:41,753 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,753 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,776 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,778 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,797 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,806 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,813 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,828 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-27 20:31:41,836 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-27 20:31:41,836 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-27 20:31:41,837 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-27 20:31:41,838 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (1/1) ... [2024-11-27 20:31:41,853 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-27 20:31:41,887 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:41,931 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-27 20:31:41,938 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-27 20:31:41,977 INFO L130 BoogieDeclarations]: Found specification of procedure getClientPrivateKey [2024-11-27 20:31:41,980 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientPrivateKey [2024-11-27 20:31:41,980 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookSize [2024-11-27 20:31:41,980 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookSize [2024-11-27 20:31:41,980 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailEncryptionKey [2024-11-27 20:31:41,980 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailEncryptionKey [2024-11-27 20:31:41,980 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookAddress [2024-11-27 20:31:41,981 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookAddress [2024-11-27 20:31:41,981 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailEncryptionKey [2024-11-27 20:31:41,981 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailEncryptionKey [2024-11-27 20:31:41,981 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailTo [2024-11-27 20:31:41,981 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailTo [2024-11-27 20:31:41,981 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailFrom [2024-11-27 20:31:41,981 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailFrom [2024-11-27 20:31:41,981 INFO L130 BoogieDeclarations]: Found specification of procedure isReadable [2024-11-27 20:31:41,981 INFO L138 BoogieDeclarations]: Found implementation of procedure isReadable [2024-11-27 20:31:41,982 INFO L130 BoogieDeclarations]: Found specification of procedure createClientKeyringEntry [2024-11-27 20:31:41,982 INFO L138 BoogieDeclarations]: Found implementation of procedure createClientKeyringEntry [2024-11-27 20:31:41,982 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailIsEncrypted [2024-11-27 20:31:41,982 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailIsEncrypted [2024-11-27 20:31:41,982 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailSignKey [2024-11-27 20:31:41,982 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailSignKey [2024-11-27 20:31:41,982 INFO L130 BoogieDeclarations]: Found specification of procedure chuckKeyAdd [2024-11-27 20:31:41,982 INFO L138 BoogieDeclarations]: Found implementation of procedure chuckKeyAdd [2024-11-27 20:31:41,982 INFO L130 BoogieDeclarations]: Found specification of procedure getEmailFrom [2024-11-27 20:31:41,982 INFO L138 BoogieDeclarations]: Found implementation of procedure getEmailFrom [2024-11-27 20:31:41,982 INFO L130 BoogieDeclarations]: Found specification of procedure setClientId [2024-11-27 20:31:41,983 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientId [2024-11-27 20:31:41,983 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-27 20:31:41,983 INFO L130 BoogieDeclarations]: Found specification of procedure isSigned [2024-11-27 20:31:41,983 INFO L138 BoogieDeclarations]: Found implementation of procedure isSigned [2024-11-27 20:31:41,983 INFO L130 BoogieDeclarations]: Found specification of procedure isKeyPairValid [2024-11-27 20:31:41,983 INFO L138 BoogieDeclarations]: Found implementation of procedure isKeyPairValid [2024-11-27 20:31:41,983 INFO L130 BoogieDeclarations]: Found specification of procedure setClientAddressBookSize [2024-11-27 20:31:41,983 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientAddressBookSize [2024-11-27 20:31:41,983 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringUser [2024-11-27 20:31:41,983 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringUser [2024-11-27 20:31:41,986 INFO L130 BoogieDeclarations]: Found specification of procedure setClientKeyringPublicKey [2024-11-27 20:31:41,986 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientKeyringPublicKey [2024-11-27 20:31:41,986 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing [2024-11-27 20:31:41,986 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing [2024-11-27 20:31:41,986 INFO L130 BoogieDeclarations]: Found specification of procedure findPublicKey [2024-11-27 20:31:41,987 INFO L138 BoogieDeclarations]: Found implementation of procedure findPublicKey [2024-11-27 20:31:41,987 INFO L130 BoogieDeclarations]: Found specification of procedure outgoing__wrappee__Encrypt [2024-11-27 20:31:41,987 INFO L138 BoogieDeclarations]: Found implementation of procedure outgoing__wrappee__Encrypt [2024-11-27 20:31:41,987 INFO L130 BoogieDeclarations]: Found specification of procedure sendEmail [2024-11-27 20:31:41,987 INFO L138 BoogieDeclarations]: Found implementation of procedure sendEmail [2024-11-27 20:31:41,987 INFO L130 BoogieDeclarations]: Found specification of procedure isEncrypted [2024-11-27 20:31:41,987 INFO L138 BoogieDeclarations]: Found implementation of procedure isEncrypted [2024-11-27 20:31:41,987 INFO L130 BoogieDeclarations]: Found specification of procedure setClientPrivateKey [2024-11-27 20:31:41,987 INFO L138 BoogieDeclarations]: Found implementation of procedure setClientPrivateKey [2024-11-27 20:31:41,987 INFO L130 BoogieDeclarations]: Found specification of procedure setEmailTo [2024-11-27 20:31:41,987 INFO L138 BoogieDeclarations]: Found implementation of procedure setEmailTo [2024-11-27 20:31:41,987 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-27 20:31:41,988 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#1 [2024-11-27 20:31:41,988 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#2 [2024-11-27 20:31:41,988 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#3 [2024-11-27 20:31:41,988 INFO L130 BoogieDeclarations]: Found specification of procedure generateKeyPair [2024-11-27 20:31:41,988 INFO L138 BoogieDeclarations]: Found implementation of procedure generateKeyPair [2024-11-27 20:31:41,988 INFO L130 BoogieDeclarations]: Found specification of procedure getClientAddressBookAddress [2024-11-27 20:31:41,988 INFO L138 BoogieDeclarations]: Found implementation of procedure getClientAddressBookAddress [2024-11-27 20:31:41,988 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-27 20:31:41,988 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-27 20:31:42,297 INFO L234 CfgBuilder]: Building ICFG [2024-11-27 20:31:42,300 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-27 20:31:43,801 INFO L? ?]: Removed 499 outVars from TransFormulas that were not future-live. [2024-11-27 20:31:43,802 INFO L283 CfgBuilder]: Performing block encoding [2024-11-27 20:31:43,847 INFO L307 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-27 20:31:43,847 INFO L312 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-27 20:31:43,849 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 27.11 08:31:43 BoogieIcfgContainer [2024-11-27 20:31:43,849 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-27 20:31:43,856 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-27 20:31:43,856 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-27 20:31:43,864 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-27 20:31:43,864 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 27.11 08:31:40" (1/3) ... [2024-11-27 20:31:43,865 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7ca971ca and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 27.11 08:31:43, skipping insertion in model container [2024-11-27 20:31:43,866 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 27.11 08:31:41" (2/3) ... [2024-11-27 20:31:43,867 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7ca971ca and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 27.11 08:31:43, skipping insertion in model container [2024-11-27 20:31:43,869 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 27.11 08:31:43" (3/3) ... [2024-11-27 20:31:43,870 INFO L128 eAbstractionObserver]: Analyzing ICFG email_spec7_product29.cil.c [2024-11-27 20:31:43,895 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-27 20:31:43,898 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG email_spec7_product29.cil.c that has 29 procedures, 404 locations, 1 initial locations, 1 loop locations, and 1 error locations. [2024-11-27 20:31:43,992 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-27 20:31:44,008 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6ea5618d, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-27 20:31:44,008 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-27 20:31:44,015 INFO L276 IsEmpty]: Start isEmpty. Operand has 404 states, 312 states have (on average 1.5576923076923077) internal successors, (486), 317 states have internal predecessors, (486), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (62), 61 states have call predecessors, (62), 62 states have call successors, (62) [2024-11-27 20:31:44,053 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-27 20:31:44,054 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:44,055 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:44,056 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:44,065 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:44,065 INFO L85 PathProgramCache]: Analyzing trace with hash -1182576154, now seen corresponding path program 1 times [2024-11-27 20:31:44,075 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:44,076 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [248116687] [2024-11-27 20:31:44,076 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:44,077 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:44,366 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:45,279 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-27 20:31:45,281 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:45,281 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [248116687] [2024-11-27 20:31:45,283 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [248116687] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:31:45,283 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1454080346] [2024-11-27 20:31:45,285 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:45,285 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:45,286 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:45,289 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:31:45,294 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-27 20:31:45,848 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:45,855 INFO L256 TraceCheckSpWp]: Trace formula consists of 1123 conjuncts, 1 conjuncts are in the unsatisfiable core [2024-11-27 20:31:45,864 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:31:45,904 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-27 20:31:45,904 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-27 20:31:45,905 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1454080346] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:45,905 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-27 20:31:45,905 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [5] total 5 [2024-11-27 20:31:45,909 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1058135256] [2024-11-27 20:31:45,909 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:45,913 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-27 20:31:45,913 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:45,935 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-27 20:31:45,935 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-27 20:31:45,939 INFO L87 Difference]: Start difference. First operand has 404 states, 312 states have (on average 1.5576923076923077) internal successors, (486), 317 states have internal predecessors, (486), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (62), 61 states have call predecessors, (62), 62 states have call successors, (62) Second operand has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:46,013 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:46,013 INFO L93 Difference]: Finished difference Result 621 states and 919 transitions. [2024-11-27 20:31:46,014 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-27 20:31:46,016 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 129 [2024-11-27 20:31:46,016 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:46,032 INFO L225 Difference]: With dead ends: 621 [2024-11-27 20:31:46,032 INFO L226 Difference]: Without dead ends: 397 [2024-11-27 20:31:46,038 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 133 GetRequests, 130 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-27 20:31:46,042 INFO L435 NwaCegarLoop]: 606 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 606 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:46,043 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 606 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:46,065 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 397 states. [2024-11-27 20:31:46,126 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 397 to 397. [2024-11-27 20:31:46,128 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 397 states, 306 states have (on average 1.5522875816993464) internal successors, (475), 310 states have internal predecessors, (475), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (61), 60 states have call predecessors, (61), 61 states have call successors, (61) [2024-11-27 20:31:46,142 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 397 states to 397 states and 598 transitions. [2024-11-27 20:31:46,145 INFO L78 Accepts]: Start accepts. Automaton has 397 states and 598 transitions. Word has length 129 [2024-11-27 20:31:46,146 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:46,147 INFO L471 AbstractCegarLoop]: Abstraction has 397 states and 598 transitions. [2024-11-27 20:31:46,147 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 35.5) internal successors, (71), 2 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:46,147 INFO L276 IsEmpty]: Start isEmpty. Operand 397 states and 598 transitions. [2024-11-27 20:31:46,166 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 130 [2024-11-27 20:31:46,166 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:46,166 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:46,179 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-27 20:31:46,367 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable0 [2024-11-27 20:31:46,367 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:46,368 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:46,368 INFO L85 PathProgramCache]: Analyzing trace with hash 1531634080, now seen corresponding path program 1 times [2024-11-27 20:31:46,368 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:46,369 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1191260648] [2024-11-27 20:31:46,369 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:46,369 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:46,424 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:46,869 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-27 20:31:46,870 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:46,870 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1191260648] [2024-11-27 20:31:46,870 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1191260648] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:31:46,870 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1426180832] [2024-11-27 20:31:46,871 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:46,871 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:46,871 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:46,873 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:31:46,877 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-27 20:31:47,358 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:47,364 INFO L256 TraceCheckSpWp]: Trace formula consists of 1123 conjuncts, 2 conjuncts are in the unsatisfiable core [2024-11-27 20:31:47,373 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:31:47,426 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-27 20:31:47,426 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-27 20:31:47,426 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1426180832] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:47,426 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-27 20:31:47,427 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-27 20:31:47,427 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [756340938] [2024-11-27 20:31:47,427 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:47,428 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:47,428 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:47,429 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:47,429 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-27 20:31:47,429 INFO L87 Difference]: Start difference. First operand 397 states and 598 transitions. Second operand has 3 states, 3 states have (on average 23.666666666666668) internal successors, (71), 3 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:47,509 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:47,509 INFO L93 Difference]: Finished difference Result 610 states and 896 transitions. [2024-11-27 20:31:47,510 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:47,510 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 23.666666666666668) internal successors, (71), 3 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 129 [2024-11-27 20:31:47,511 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:47,520 INFO L225 Difference]: With dead ends: 610 [2024-11-27 20:31:47,520 INFO L226 Difference]: Without dead ends: 399 [2024-11-27 20:31:47,525 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 133 GetRequests, 129 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-27 20:31:47,526 INFO L435 NwaCegarLoop]: 596 mSDtfsCounter, 1 mSDsluCounter, 594 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1 SdHoareTripleChecker+Valid, 1190 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:47,526 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [1 Valid, 1190 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:47,528 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 399 states. [2024-11-27 20:31:47,574 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 399 to 398. [2024-11-27 20:31:47,579 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 398 states, 307 states have (on average 1.5504885993485342) internal successors, (476), 311 states have internal predecessors, (476), 62 states have call successors, (62), 28 states have call predecessors, (62), 28 states have return successors, (61), 60 states have call predecessors, (61), 61 states have call successors, (61) [2024-11-27 20:31:47,587 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 398 states to 398 states and 599 transitions. [2024-11-27 20:31:47,588 INFO L78 Accepts]: Start accepts. Automaton has 398 states and 599 transitions. Word has length 129 [2024-11-27 20:31:47,590 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:47,590 INFO L471 AbstractCegarLoop]: Abstraction has 398 states and 599 transitions. [2024-11-27 20:31:47,590 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 23.666666666666668) internal successors, (71), 3 states have internal predecessors, (71), 2 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:47,591 INFO L276 IsEmpty]: Start isEmpty. Operand 398 states and 599 transitions. [2024-11-27 20:31:47,599 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 154 [2024-11-27 20:31:47,599 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:47,599 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:47,612 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-27 20:31:47,803 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable1 [2024-11-27 20:31:47,804 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:47,804 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:47,805 INFO L85 PathProgramCache]: Analyzing trace with hash -296121297, now seen corresponding path program 1 times [2024-11-27 20:31:47,805 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:47,805 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [968414093] [2024-11-27 20:31:47,806 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:47,808 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:47,898 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:48,309 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 43 trivial. 0 not checked. [2024-11-27 20:31:48,312 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:48,312 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [968414093] [2024-11-27 20:31:48,313 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [968414093] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:31:48,313 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [934993537] [2024-11-27 20:31:48,313 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:48,313 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:48,313 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:48,316 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:31:48,320 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-27 20:31:48,853 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:48,859 INFO L256 TraceCheckSpWp]: Trace formula consists of 1212 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-27 20:31:48,871 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:31:48,916 INFO L134 CoverageAnalysis]: Checked inductivity of 49 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-27 20:31:48,916 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-27 20:31:48,917 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [934993537] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:48,917 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-27 20:31:48,917 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-27 20:31:48,917 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1404624414] [2024-11-27 20:31:48,917 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:48,918 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:48,918 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:48,919 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:48,921 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-27 20:31:48,921 INFO L87 Difference]: Start difference. First operand 398 states and 599 transitions. Second operand has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-27 20:31:49,004 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:49,005 INFO L93 Difference]: Finished difference Result 839 states and 1282 transitions. [2024-11-27 20:31:49,005 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:49,006 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 153 [2024-11-27 20:31:49,006 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:49,013 INFO L225 Difference]: With dead ends: 839 [2024-11-27 20:31:49,014 INFO L226 Difference]: Without dead ends: 467 [2024-11-27 20:31:49,016 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 157 GetRequests, 153 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-27 20:31:49,018 INFO L435 NwaCegarLoop]: 611 mSDtfsCounter, 126 mSDsluCounter, 550 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 144 SdHoareTripleChecker+Valid, 1161 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:49,019 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [144 Valid, 1161 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:49,021 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 467 states. [2024-11-27 20:31:49,071 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 467 to 459. [2024-11-27 20:31:49,073 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 459 states, 354 states have (on average 1.5706214689265536) internal successors, (556), 358 states have internal predecessors, (556), 76 states have call successors, (76), 28 states have call predecessors, (76), 28 states have return successors, (75), 74 states have call predecessors, (75), 75 states have call successors, (75) [2024-11-27 20:31:49,081 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 459 states to 459 states and 707 transitions. [2024-11-27 20:31:49,082 INFO L78 Accepts]: Start accepts. Automaton has 459 states and 707 transitions. Word has length 153 [2024-11-27 20:31:49,082 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:49,082 INFO L471 AbstractCegarLoop]: Abstraction has 459 states and 707 transitions. [2024-11-27 20:31:49,083 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 27.666666666666668) internal successors, (83), 3 states have internal predecessors, (83), 2 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-27 20:31:49,083 INFO L276 IsEmpty]: Start isEmpty. Operand 459 states and 707 transitions. [2024-11-27 20:31:49,093 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 136 [2024-11-27 20:31:49,093 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:49,094 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:49,110 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-27 20:31:49,294 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:49,295 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:49,295 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:49,296 INFO L85 PathProgramCache]: Analyzing trace with hash 425050961, now seen corresponding path program 1 times [2024-11-27 20:31:49,296 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:49,296 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2011805310] [2024-11-27 20:31:49,296 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:49,296 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:49,362 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:49,669 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 3 proven. 3 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-27 20:31:49,669 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:49,670 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2011805310] [2024-11-27 20:31:49,670 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2011805310] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:31:49,670 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [302275609] [2024-11-27 20:31:49,671 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:49,671 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:49,671 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:49,673 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:31:49,677 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-27 20:31:50,183 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:50,189 INFO L256 TraceCheckSpWp]: Trace formula consists of 1139 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-27 20:31:50,198 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:31:50,291 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-27 20:31:50,294 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-27 20:31:50,295 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [302275609] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:50,295 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-27 20:31:50,295 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [5] total 8 [2024-11-27 20:31:50,295 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [561012137] [2024-11-27 20:31:50,295 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:50,296 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-27 20:31:50,296 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:50,297 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-27 20:31:50,300 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-27 20:31:50,300 INFO L87 Difference]: Start difference. First operand 459 states and 707 transitions. Second operand has 5 states, 4 states have (on average 21.5) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-27 20:31:50,445 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:50,446 INFO L93 Difference]: Finished difference Result 909 states and 1404 transitions. [2024-11-27 20:31:50,447 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-27 20:31:50,447 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 21.5) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) Word has length 135 [2024-11-27 20:31:50,447 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:50,454 INFO L225 Difference]: With dead ends: 909 [2024-11-27 20:31:50,454 INFO L226 Difference]: Without dead ends: 461 [2024-11-27 20:31:50,460 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 139 GetRequests, 133 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=40, Unknown=0, NotChecked=0, Total=56 [2024-11-27 20:31:50,461 INFO L435 NwaCegarLoop]: 590 mSDtfsCounter, 2 mSDsluCounter, 1759 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2349 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:50,461 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2349 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:50,463 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 461 states. [2024-11-27 20:31:50,486 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 461 to 461. [2024-11-27 20:31:50,488 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 461 states, 355 states have (on average 1.5690140845070422) internal successors, (557), 360 states have internal predecessors, (557), 76 states have call successors, (76), 28 states have call predecessors, (76), 29 states have return successors, (77), 74 states have call predecessors, (77), 75 states have call successors, (77) [2024-11-27 20:31:50,493 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 461 states to 461 states and 710 transitions. [2024-11-27 20:31:50,494 INFO L78 Accepts]: Start accepts. Automaton has 461 states and 710 transitions. Word has length 135 [2024-11-27 20:31:50,494 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:50,494 INFO L471 AbstractCegarLoop]: Abstraction has 461 states and 710 transitions. [2024-11-27 20:31:50,494 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 21.5) internal successors, (86), 5 states have internal predecessors, (86), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-27 20:31:50,495 INFO L276 IsEmpty]: Start isEmpty. Operand 461 states and 710 transitions. [2024-11-27 20:31:50,500 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2024-11-27 20:31:50,500 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:50,501 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:50,515 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-27 20:31:50,701 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:50,702 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:50,702 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:50,702 INFO L85 PathProgramCache]: Analyzing trace with hash 1572092482, now seen corresponding path program 1 times [2024-11-27 20:31:50,702 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:50,702 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1274751089] [2024-11-27 20:31:50,702 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:50,703 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:50,758 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:51,013 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 6 proven. 6 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-27 20:31:51,014 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:51,014 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1274751089] [2024-11-27 20:31:51,014 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1274751089] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:31:51,014 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1507519589] [2024-11-27 20:31:51,014 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:51,014 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:51,015 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:51,017 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:31:51,021 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-27 20:31:51,506 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:51,511 INFO L256 TraceCheckSpWp]: Trace formula consists of 1140 conjuncts, 6 conjuncts are in the unsatisfiable core [2024-11-27 20:31:51,517 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:31:51,631 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 19 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-27 20:31:51,631 INFO L308 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-27 20:31:51,631 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1507519589] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:51,632 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-27 20:31:51,632 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [8] total 11 [2024-11-27 20:31:51,632 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1215948398] [2024-11-27 20:31:51,632 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:51,633 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-27 20:31:51,633 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:51,633 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-27 20:31:51,634 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-27 20:31:51,634 INFO L87 Difference]: Start difference. First operand 461 states and 710 transitions. Second operand has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-27 20:31:51,764 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:51,764 INFO L93 Difference]: Finished difference Result 911 states and 1409 transitions. [2024-11-27 20:31:51,765 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-27 20:31:51,765 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) Word has length 136 [2024-11-27 20:31:51,765 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:51,769 INFO L225 Difference]: With dead ends: 911 [2024-11-27 20:31:51,770 INFO L226 Difference]: Without dead ends: 463 [2024-11-27 20:31:51,774 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 143 GetRequests, 134 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=22, Invalid=88, Unknown=0, NotChecked=0, Total=110 [2024-11-27 20:31:51,775 INFO L435 NwaCegarLoop]: 588 mSDtfsCounter, 2 mSDsluCounter, 1747 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2335 SdHoareTripleChecker+Invalid, 49 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:51,776 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2335 Invalid, 49 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-27 20:31:51,780 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 463 states. [2024-11-27 20:31:51,828 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 463 to 463. [2024-11-27 20:31:51,829 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 463 states, 356 states have (on average 1.5674157303370786) internal successors, (558), 362 states have internal predecessors, (558), 76 states have call successors, (76), 28 states have call predecessors, (76), 30 states have return successors, (82), 74 states have call predecessors, (82), 75 states have call successors, (82) [2024-11-27 20:31:51,836 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 463 states to 463 states and 716 transitions. [2024-11-27 20:31:51,837 INFO L78 Accepts]: Start accepts. Automaton has 463 states and 716 transitions. Word has length 136 [2024-11-27 20:31:51,840 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:51,840 INFO L471 AbstractCegarLoop]: Abstraction has 463 states and 716 transitions. [2024-11-27 20:31:51,840 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 17.6) internal successors, (88), 5 states have internal predecessors, (88), 3 states have call successors, (20), 2 states have call predecessors, (20), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-27 20:31:51,840 INFO L276 IsEmpty]: Start isEmpty. Operand 463 states and 716 transitions. [2024-11-27 20:31:51,845 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 138 [2024-11-27 20:31:51,846 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:51,846 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:51,859 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-11-27 20:31:52,046 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:52,047 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:52,048 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:52,049 INFO L85 PathProgramCache]: Analyzing trace with hash -1807925944, now seen corresponding path program 1 times [2024-11-27 20:31:52,049 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:52,049 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [830693740] [2024-11-27 20:31:52,049 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:52,050 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:52,102 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:52,335 INFO L134 CoverageAnalysis]: Checked inductivity of 37 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2024-11-27 20:31:52,335 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:52,335 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [830693740] [2024-11-27 20:31:52,335 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [830693740] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:52,335 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:52,335 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-27 20:31:52,336 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1083863068] [2024-11-27 20:31:52,339 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:52,340 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-27 20:31:52,340 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:52,341 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-27 20:31:52,341 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-27 20:31:52,341 INFO L87 Difference]: Start difference. First operand 463 states and 716 transitions. Second operand has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-27 20:31:52,434 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:52,434 INFO L93 Difference]: Finished difference Result 903 states and 1400 transitions. [2024-11-27 20:31:52,435 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-27 20:31:52,435 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) Word has length 137 [2024-11-27 20:31:52,435 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:52,442 INFO L225 Difference]: With dead ends: 903 [2024-11-27 20:31:52,442 INFO L226 Difference]: Without dead ends: 463 [2024-11-27 20:31:52,444 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-27 20:31:52,447 INFO L435 NwaCegarLoop]: 591 mSDtfsCounter, 2 mSDsluCounter, 1762 mSDsCounter, 0 mSdLazyCounter, 33 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 2353 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 33 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:52,447 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 2353 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 33 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:52,450 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 463 states. [2024-11-27 20:31:52,483 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 463 to 463. [2024-11-27 20:31:52,484 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 463 states, 356 states have (on average 1.5674157303370786) internal successors, (558), 362 states have internal predecessors, (558), 76 states have call successors, (76), 28 states have call predecessors, (76), 30 states have return successors, (81), 74 states have call predecessors, (81), 75 states have call successors, (81) [2024-11-27 20:31:52,489 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 463 states to 463 states and 715 transitions. [2024-11-27 20:31:52,490 INFO L78 Accepts]: Start accepts. Automaton has 463 states and 715 transitions. Word has length 137 [2024-11-27 20:31:52,490 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:52,491 INFO L471 AbstractCegarLoop]: Abstraction has 463 states and 715 transitions. [2024-11-27 20:31:52,491 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 21.0) internal successors, (84), 5 states have internal predecessors, (84), 3 states have call successors, (20), 2 states have call predecessors, (20), 2 states have return successors, (17), 2 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-27 20:31:52,491 INFO L276 IsEmpty]: Start isEmpty. Operand 463 states and 715 transitions. [2024-11-27 20:31:52,495 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 158 [2024-11-27 20:31:52,496 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:52,497 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:52,497 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-27 20:31:52,497 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:52,497 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:52,498 INFO L85 PathProgramCache]: Analyzing trace with hash -1964549918, now seen corresponding path program 1 times [2024-11-27 20:31:52,498 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:52,499 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1434735887] [2024-11-27 20:31:52,499 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:52,499 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:52,546 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:52,806 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 43 trivial. 0 not checked. [2024-11-27 20:31:52,806 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:52,806 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1434735887] [2024-11-27 20:31:52,806 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1434735887] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:52,806 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:52,806 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-27 20:31:52,806 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [537784689] [2024-11-27 20:31:52,806 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:52,807 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-27 20:31:52,807 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:52,807 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-27 20:31:52,807 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-27 20:31:52,808 INFO L87 Difference]: Start difference. First operand 463 states and 715 transitions. Second operand has 5 states, 4 states have (on average 23.0) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) [2024-11-27 20:31:52,886 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:52,887 INFO L93 Difference]: Finished difference Result 905 states and 1403 transitions. [2024-11-27 20:31:52,887 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-27 20:31:52,888 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 23.0) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) Word has length 157 [2024-11-27 20:31:52,889 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:52,895 INFO L225 Difference]: With dead ends: 905 [2024-11-27 20:31:52,895 INFO L226 Difference]: Without dead ends: 465 [2024-11-27 20:31:52,897 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-27 20:31:52,898 INFO L435 NwaCegarLoop]: 592 mSDtfsCounter, 1 mSDsluCounter, 1764 mSDsCounter, 0 mSdLazyCounter, 37 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 2356 SdHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 37 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:52,899 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 2356 Invalid, 37 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 37 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:52,901 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 465 states. [2024-11-27 20:31:52,924 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 465 to 465. [2024-11-27 20:31:52,925 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 465 states, 357 states have (on average 1.5658263305322129) internal successors, (559), 364 states have internal predecessors, (559), 76 states have call successors, (76), 28 states have call predecessors, (76), 31 states have return successors, (83), 74 states have call predecessors, (83), 75 states have call successors, (83) [2024-11-27 20:31:52,929 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 465 states to 465 states and 718 transitions. [2024-11-27 20:31:52,930 INFO L78 Accepts]: Start accepts. Automaton has 465 states and 718 transitions. Word has length 157 [2024-11-27 20:31:52,930 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:52,930 INFO L471 AbstractCegarLoop]: Abstraction has 465 states and 718 transitions. [2024-11-27 20:31:52,931 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 23.0) internal successors, (92), 5 states have internal predecessors, (92), 3 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 2 states have call predecessors, (20), 3 states have call successors, (20) [2024-11-27 20:31:52,931 INFO L276 IsEmpty]: Start isEmpty. Operand 465 states and 718 transitions. [2024-11-27 20:31:52,934 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 159 [2024-11-27 20:31:52,934 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:52,935 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:52,935 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-27 20:31:52,935 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:52,935 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:52,935 INFO L85 PathProgramCache]: Analyzing trace with hash -445032628, now seen corresponding path program 1 times [2024-11-27 20:31:52,936 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:52,936 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [102770088] [2024-11-27 20:31:52,936 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:52,936 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:52,977 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:53,242 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 13 proven. 0 refuted. 0 times theorem prover too weak. 37 trivial. 0 not checked. [2024-11-27 20:31:53,242 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:53,243 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [102770088] [2024-11-27 20:31:53,243 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [102770088] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:53,243 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:53,243 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-27 20:31:53,243 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [121639700] [2024-11-27 20:31:53,243 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:53,244 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-27 20:31:53,244 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:53,245 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-27 20:31:53,245 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2024-11-27 20:31:53,246 INFO L87 Difference]: Start difference. First operand 465 states and 718 transitions. Second operand has 8 states, 7 states have (on average 13.714285714285714) internal successors, (96), 8 states have internal predecessors, (96), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-27 20:31:53,494 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:53,495 INFO L93 Difference]: Finished difference Result 907 states and 1402 transitions. [2024-11-27 20:31:53,495 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-27 20:31:53,496 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 13.714285714285714) internal successors, (96), 8 states have internal predecessors, (96), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) Word has length 158 [2024-11-27 20:31:53,496 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:53,501 INFO L225 Difference]: With dead ends: 907 [2024-11-27 20:31:53,501 INFO L226 Difference]: Without dead ends: 467 [2024-11-27 20:31:53,504 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=21, Invalid=69, Unknown=0, NotChecked=0, Total=90 [2024-11-27 20:31:53,504 INFO L435 NwaCegarLoop]: 582 mSDtfsCounter, 7 mSDsluCounter, 3463 mSDsCounter, 0 mSdLazyCounter, 145 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 8 SdHoareTripleChecker+Valid, 4045 SdHoareTripleChecker+Invalid, 149 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 145 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:53,505 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [8 Valid, 4045 Invalid, 149 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 145 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-27 20:31:53,506 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 467 states. [2024-11-27 20:31:53,541 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 467 to 467. [2024-11-27 20:31:53,542 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 467 states, 359 states have (on average 1.5626740947075208) internal successors, (561), 365 states have internal predecessors, (561), 76 states have call successors, (76), 29 states have call predecessors, (76), 31 states have return successors, (82), 74 states have call predecessors, (82), 75 states have call successors, (82) [2024-11-27 20:31:53,548 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 467 states to 467 states and 719 transitions. [2024-11-27 20:31:53,549 INFO L78 Accepts]: Start accepts. Automaton has 467 states and 719 transitions. Word has length 158 [2024-11-27 20:31:53,550 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:53,550 INFO L471 AbstractCegarLoop]: Abstraction has 467 states and 719 transitions. [2024-11-27 20:31:53,550 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 13.714285714285714) internal successors, (96), 8 states have internal predecessors, (96), 4 states have call successors, (23), 2 states have call predecessors, (23), 3 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-27 20:31:53,550 INFO L276 IsEmpty]: Start isEmpty. Operand 467 states and 719 transitions. [2024-11-27 20:31:53,555 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 160 [2024-11-27 20:31:53,555 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:53,555 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:53,556 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-27 20:31:53,556 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:53,556 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:53,557 INFO L85 PathProgramCache]: Analyzing trace with hash -1442987116, now seen corresponding path program 2 times [2024-11-27 20:31:53,557 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:53,557 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [749863121] [2024-11-27 20:31:53,557 INFO L95 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST1 [2024-11-27 20:31:53,557 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:53,635 INFO L229 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST1 issued 2 check-sat command(s) [2024-11-27 20:31:53,637 INFO L230 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-27 20:31:53,887 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 7 proven. 0 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked. [2024-11-27 20:31:53,889 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:53,889 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [749863121] [2024-11-27 20:31:53,889 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [749863121] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:53,889 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:53,890 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-27 20:31:53,890 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1564650757] [2024-11-27 20:31:53,890 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:53,890 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-27 20:31:53,890 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:53,891 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-27 20:31:53,891 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=12, Invalid=30, Unknown=0, NotChecked=0, Total=42 [2024-11-27 20:31:53,891 INFO L87 Difference]: Start difference. First operand 467 states and 719 transitions. Second operand has 7 states, 6 states have (on average 15.666666666666666) internal successors, (94), 7 states have internal predecessors, (94), 4 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-27 20:31:54,041 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:54,042 INFO L93 Difference]: Finished difference Result 907 states and 1406 transitions. [2024-11-27 20:31:54,045 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-27 20:31:54,046 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 6 states have (on average 15.666666666666666) internal successors, (94), 7 states have internal predecessors, (94), 4 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) Word has length 159 [2024-11-27 20:31:54,046 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:54,050 INFO L225 Difference]: With dead ends: 907 [2024-11-27 20:31:54,051 INFO L226 Difference]: Without dead ends: 469 [2024-11-27 20:31:54,053 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=12, Invalid=30, Unknown=0, NotChecked=0, Total=42 [2024-11-27 20:31:54,053 INFO L435 NwaCegarLoop]: 590 mSDtfsCounter, 2 mSDsluCounter, 2922 mSDsCounter, 0 mSdLazyCounter, 86 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 4 SdHoareTripleChecker+Valid, 3512 SdHoareTripleChecker+Invalid, 86 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 86 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:54,054 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [4 Valid, 3512 Invalid, 86 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 86 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-27 20:31:54,055 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 469 states. [2024-11-27 20:31:54,082 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 469 to 469. [2024-11-27 20:31:54,083 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 469 states, 360 states have (on average 1.5611111111111111) internal successors, (562), 367 states have internal predecessors, (562), 76 states have call successors, (76), 29 states have call predecessors, (76), 32 states have return successors, (87), 74 states have call predecessors, (87), 75 states have call successors, (87) [2024-11-27 20:31:54,089 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 469 states to 469 states and 725 transitions. [2024-11-27 20:31:54,090 INFO L78 Accepts]: Start accepts. Automaton has 469 states and 725 transitions. Word has length 159 [2024-11-27 20:31:54,092 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:54,092 INFO L471 AbstractCegarLoop]: Abstraction has 469 states and 725 transitions. [2024-11-27 20:31:54,093 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 6 states have (on average 15.666666666666666) internal successors, (94), 7 states have internal predecessors, (94), 4 states have call successors, (23), 2 states have call predecessors, (23), 2 states have return successors, (20), 3 states have call predecessors, (20), 4 states have call successors, (20) [2024-11-27 20:31:54,093 INFO L276 IsEmpty]: Start isEmpty. Operand 469 states and 725 transitions. [2024-11-27 20:31:54,096 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 161 [2024-11-27 20:31:54,096 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:54,097 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:54,097 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-27 20:31:54,097 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:54,098 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:54,099 INFO L85 PathProgramCache]: Analyzing trace with hash -998929369, now seen corresponding path program 1 times [2024-11-27 20:31:54,099 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:54,099 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1728790251] [2024-11-27 20:31:54,099 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:54,099 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:54,150 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:54,337 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-27 20:31:54,338 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:54,338 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1728790251] [2024-11-27 20:31:54,338 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1728790251] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:31:54,338 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1605354050] [2024-11-27 20:31:54,338 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:54,339 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:31:54,339 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:31:54,341 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:31:54,344 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-27 20:31:54,833 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:54,839 INFO L256 TraceCheckSpWp]: Trace formula consists of 1223 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-27 20:31:54,844 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:31:54,879 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-27 20:31:54,883 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-27 20:31:55,079 INFO L134 CoverageAnalysis]: Checked inductivity of 51 backedges. 0 proven. 1 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-27 20:31:55,081 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1605354050] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-27 20:31:55,081 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-27 20:31:55,082 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [4, 4, 4] total 7 [2024-11-27 20:31:55,082 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1315226781] [2024-11-27 20:31:55,082 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-27 20:31:55,083 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-27 20:31:55,083 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:55,084 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-27 20:31:55,085 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-27 20:31:55,086 INFO L87 Difference]: Start difference. First operand 469 states and 725 transitions. Second operand has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) [2024-11-27 20:31:55,395 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:55,396 INFO L93 Difference]: Finished difference Result 1091 states and 1748 transitions. [2024-11-27 20:31:55,396 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-27 20:31:55,397 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) Word has length 160 [2024-11-27 20:31:55,397 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:55,405 INFO L225 Difference]: With dead ends: 1091 [2024-11-27 20:31:55,405 INFO L226 Difference]: Without dead ends: 880 [2024-11-27 20:31:55,407 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 322 GetRequests, 317 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=21, Unknown=0, NotChecked=0, Total=42 [2024-11-27 20:31:55,408 INFO L435 NwaCegarLoop]: 651 mSDtfsCounter, 530 mSDsluCounter, 1208 mSDsCounter, 0 mSdLazyCounter, 110 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 584 SdHoareTripleChecker+Valid, 1859 SdHoareTripleChecker+Invalid, 127 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 110 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:55,408 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [584 Valid, 1859 Invalid, 127 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 110 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-27 20:31:55,410 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 880 states. [2024-11-27 20:31:55,452 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 880 to 856. [2024-11-27 20:31:55,454 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 856 states, 668 states have (on average 1.6302395209580838) internal successors, (1089), 675 states have internal predecessors, (1089), 155 states have call successors, (155), 29 states have call predecessors, (155), 32 states have return successors, (176), 153 states have call predecessors, (176), 154 states have call successors, (176) [2024-11-27 20:31:55,463 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 856 states to 856 states and 1420 transitions. [2024-11-27 20:31:55,464 INFO L78 Accepts]: Start accepts. Automaton has 856 states and 1420 transitions. Word has length 160 [2024-11-27 20:31:55,464 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:55,465 INFO L471 AbstractCegarLoop]: Abstraction has 856 states and 1420 transitions. [2024-11-27 20:31:55,465 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 19.0) internal successors, (133), 7 states have internal predecessors, (133), 2 states have call successors, (37), 2 states have call predecessors, (37), 2 states have return successors, (34), 2 states have call predecessors, (34), 2 states have call successors, (34) [2024-11-27 20:31:55,465 INFO L276 IsEmpty]: Start isEmpty. Operand 856 states and 1420 transitions. [2024-11-27 20:31:55,472 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 168 [2024-11-27 20:31:55,472 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:55,473 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:55,486 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-11-27 20:31:55,673 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-27 20:31:55,674 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:55,674 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:55,674 INFO L85 PathProgramCache]: Analyzing trace with hash 569469403, now seen corresponding path program 1 times [2024-11-27 20:31:55,674 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:55,674 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1929383274] [2024-11-27 20:31:55,675 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:55,675 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:55,731 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:55,816 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-27 20:31:55,816 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:55,817 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1929383274] [2024-11-27 20:31:55,817 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1929383274] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:55,817 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:55,817 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:31:55,818 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [673155134] [2024-11-27 20:31:55,818 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:55,818 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:55,819 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:55,819 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:55,819 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:55,820 INFO L87 Difference]: Start difference. First operand 856 states and 1420 transitions. Second operand has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-27 20:31:55,899 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:55,899 INFO L93 Difference]: Finished difference Result 2035 states and 3430 transitions. [2024-11-27 20:31:55,900 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:55,900 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 167 [2024-11-27 20:31:55,900 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:55,952 INFO L225 Difference]: With dead ends: 2035 [2024-11-27 20:31:55,952 INFO L226 Difference]: Without dead ends: 1247 [2024-11-27 20:31:55,955 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:55,956 INFO L435 NwaCegarLoop]: 619 mSDtfsCounter, 124 mSDsluCounter, 596 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 142 SdHoareTripleChecker+Valid, 1215 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:55,956 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [142 Valid, 1215 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:55,960 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1247 states. [2024-11-27 20:31:56,042 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1247 to 1239. [2024-11-27 20:31:56,046 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1239 states, 972 states have (on average 1.6481481481481481) internal successors, (1602), 979 states have internal predecessors, (1602), 234 states have call successors, (234), 29 states have call predecessors, (234), 32 states have return successors, (265), 232 states have call predecessors, (265), 233 states have call successors, (265) [2024-11-27 20:31:56,058 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1239 states to 1239 states and 2101 transitions. [2024-11-27 20:31:56,060 INFO L78 Accepts]: Start accepts. Automaton has 1239 states and 2101 transitions. Word has length 167 [2024-11-27 20:31:56,061 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:56,061 INFO L471 AbstractCegarLoop]: Abstraction has 1239 states and 2101 transitions. [2024-11-27 20:31:56,061 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-27 20:31:56,063 INFO L276 IsEmpty]: Start isEmpty. Operand 1239 states and 2101 transitions. [2024-11-27 20:31:56,074 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 150 [2024-11-27 20:31:56,074 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:56,075 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:56,075 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-27 20:31:56,075 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:56,076 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:56,076 INFO L85 PathProgramCache]: Analyzing trace with hash 924142922, now seen corresponding path program 1 times [2024-11-27 20:31:56,076 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:56,076 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2146624666] [2024-11-27 20:31:56,076 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:56,077 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:56,127 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:56,191 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:31:56,192 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:56,193 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2146624666] [2024-11-27 20:31:56,193 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2146624666] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:56,193 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:56,193 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:31:56,193 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1678361676] [2024-11-27 20:31:56,193 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:56,195 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:56,196 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:56,196 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:56,196 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:56,197 INFO L87 Difference]: Start difference. First operand 1239 states and 2101 transitions. Second operand has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:56,314 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:56,314 INFO L93 Difference]: Finished difference Result 2967 states and 5071 transitions. [2024-11-27 20:31:56,315 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:56,315 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 149 [2024-11-27 20:31:56,315 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:56,333 INFO L225 Difference]: With dead ends: 2967 [2024-11-27 20:31:56,333 INFO L226 Difference]: Without dead ends: 1847 [2024-11-27 20:31:56,339 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:56,341 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 122 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 1188 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:56,341 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 1188 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:56,345 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1847 states. [2024-11-27 20:31:56,459 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1847 to 1839. [2024-11-27 20:31:56,464 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1839 states, 1453 states have (on average 1.6607019958706126) internal successors, (2413), 1460 states have internal predecessors, (2413), 353 states have call successors, (353), 29 states have call predecessors, (353), 32 states have return successors, (384), 351 states have call predecessors, (384), 352 states have call successors, (384) [2024-11-27 20:31:56,486 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1839 states to 1839 states and 3150 transitions. [2024-11-27 20:31:56,488 INFO L78 Accepts]: Start accepts. Automaton has 1839 states and 3150 transitions. Word has length 149 [2024-11-27 20:31:56,488 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:56,488 INFO L471 AbstractCegarLoop]: Abstraction has 1839 states and 3150 transitions. [2024-11-27 20:31:56,488 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.0) internal successors, (93), 3 states have internal predecessors, (93), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:56,488 INFO L276 IsEmpty]: Start isEmpty. Operand 1839 states and 3150 transitions. [2024-11-27 20:31:56,505 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 151 [2024-11-27 20:31:56,506 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:56,506 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:56,506 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2024-11-27 20:31:56,507 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:56,507 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:56,507 INFO L85 PathProgramCache]: Analyzing trace with hash -1547162464, now seen corresponding path program 1 times [2024-11-27 20:31:56,507 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:56,507 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2111027817] [2024-11-27 20:31:56,508 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:56,508 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:56,557 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:56,626 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:31:56,626 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:56,626 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2111027817] [2024-11-27 20:31:56,626 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2111027817] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:56,627 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:56,627 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:31:56,628 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [873139052] [2024-11-27 20:31:56,628 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:56,628 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:56,628 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:56,629 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:56,630 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:56,630 INFO L87 Difference]: Start difference. First operand 1839 states and 3150 transitions. Second operand has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:56,824 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:56,824 INFO L93 Difference]: Finished difference Result 4364 states and 7543 transitions. [2024-11-27 20:31:56,824 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:56,826 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 150 [2024-11-27 20:31:56,826 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:56,850 INFO L225 Difference]: With dead ends: 4364 [2024-11-27 20:31:56,851 INFO L226 Difference]: Without dead ends: 2765 [2024-11-27 20:31:56,859 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:56,860 INFO L435 NwaCegarLoop]: 604 mSDtfsCounter, 120 mSDsluCounter, 589 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 138 SdHoareTripleChecker+Valid, 1193 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:56,861 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [138 Valid, 1193 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:56,865 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2765 states. [2024-11-27 20:31:57,036 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2765 to 2757. [2024-11-27 20:31:57,042 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2757 states, 2209 states have (on average 1.6708918062471707) internal successors, (3691), 2216 states have internal predecessors, (3691), 515 states have call successors, (515), 29 states have call predecessors, (515), 32 states have return successors, (562), 513 states have call predecessors, (562), 514 states have call successors, (562) [2024-11-27 20:31:57,069 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2757 states to 2757 states and 4768 transitions. [2024-11-27 20:31:57,072 INFO L78 Accepts]: Start accepts. Automaton has 2757 states and 4768 transitions. Word has length 150 [2024-11-27 20:31:57,072 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:57,072 INFO L471 AbstractCegarLoop]: Abstraction has 2757 states and 4768 transitions. [2024-11-27 20:31:57,072 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.333333333333332) internal successors, (94), 3 states have internal predecessors, (94), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:57,073 INFO L276 IsEmpty]: Start isEmpty. Operand 2757 states and 4768 transitions. [2024-11-27 20:31:57,100 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 152 [2024-11-27 20:31:57,100 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:57,100 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:57,100 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12 [2024-11-27 20:31:57,100 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:57,101 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:57,101 INFO L85 PathProgramCache]: Analyzing trace with hash -2051715413, now seen corresponding path program 1 times [2024-11-27 20:31:57,101 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:57,101 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [351993520] [2024-11-27 20:31:57,101 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:57,101 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:57,155 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:57,231 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:31:57,231 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:57,231 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [351993520] [2024-11-27 20:31:57,231 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [351993520] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:57,231 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:57,231 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:31:57,232 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2101050642] [2024-11-27 20:31:57,232 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:57,232 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:57,233 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:57,234 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:57,234 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:57,235 INFO L87 Difference]: Start difference. First operand 2757 states and 4768 transitions. Second operand has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:57,526 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:57,526 INFO L93 Difference]: Finished difference Result 6567 states and 11449 transitions. [2024-11-27 20:31:57,527 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:57,527 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 151 [2024-11-27 20:31:57,528 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:57,570 INFO L225 Difference]: With dead ends: 6567 [2024-11-27 20:31:57,570 INFO L226 Difference]: Without dead ends: 4247 [2024-11-27 20:31:57,584 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:57,586 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 118 mSDsluCounter, 588 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 136 SdHoareTripleChecker+Valid, 1185 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:57,587 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [136 Valid, 1185 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:57,594 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4247 states. [2024-11-27 20:31:57,968 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4247 to 4239. [2024-11-27 20:31:57,980 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4239 states, 3446 states have (on average 1.6781775972141613) internal successors, (5783), 3453 states have internal predecessors, (5783), 760 states have call successors, (760), 29 states have call predecessors, (760), 32 states have return successors, (833), 758 states have call predecessors, (833), 759 states have call successors, (833) [2024-11-27 20:31:58,018 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4239 states to 4239 states and 7376 transitions. [2024-11-27 20:31:58,022 INFO L78 Accepts]: Start accepts. Automaton has 4239 states and 7376 transitions. Word has length 151 [2024-11-27 20:31:58,022 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:58,023 INFO L471 AbstractCegarLoop]: Abstraction has 4239 states and 7376 transitions. [2024-11-27 20:31:58,023 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 31.666666666666668) internal successors, (95), 3 states have internal predecessors, (95), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:58,023 INFO L276 IsEmpty]: Start isEmpty. Operand 4239 states and 7376 transitions. [2024-11-27 20:31:58,062 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 172 [2024-11-27 20:31:58,062 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:58,062 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:58,062 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13 [2024-11-27 20:31:58,063 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:58,063 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:58,063 INFO L85 PathProgramCache]: Analyzing trace with hash 192117821, now seen corresponding path program 1 times [2024-11-27 20:31:58,063 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:58,064 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [964822778] [2024-11-27 20:31:58,064 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:58,064 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:58,110 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:58,181 INFO L134 CoverageAnalysis]: Checked inductivity of 50 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 50 trivial. 0 not checked. [2024-11-27 20:31:58,181 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:58,181 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [964822778] [2024-11-27 20:31:58,181 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [964822778] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:58,181 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:58,181 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:31:58,182 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [185241555] [2024-11-27 20:31:58,182 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:58,183 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:58,183 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:58,184 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:58,184 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:58,184 INFO L87 Difference]: Start difference. First operand 4239 states and 7376 transitions. Second operand has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-27 20:31:58,526 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:58,526 INFO L93 Difference]: Finished difference Result 10506 states and 18384 transitions. [2024-11-27 20:31:58,527 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:58,527 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) Word has length 171 [2024-11-27 20:31:58,527 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:58,588 INFO L225 Difference]: With dead ends: 10506 [2024-11-27 20:31:58,588 INFO L226 Difference]: Without dead ends: 6925 [2024-11-27 20:31:58,606 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:58,607 INFO L435 NwaCegarLoop]: 613 mSDtfsCounter, 116 mSDsluCounter, 596 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 134 SdHoareTripleChecker+Valid, 1209 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:31:58,609 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [134 Valid, 1209 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:31:58,618 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 6925 states. [2024-11-27 20:31:59,122 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 6925 to 6917. [2024-11-27 20:31:59,148 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 6917 states, 5631 states have (on average 1.6751909074764695) internal successors, (9433), 5638 states have internal predecessors, (9433), 1253 states have call successors, (1253), 29 states have call predecessors, (1253), 32 states have return successors, (1370), 1251 states have call predecessors, (1370), 1252 states have call successors, (1370) [2024-11-27 20:31:59,211 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 6917 states to 6917 states and 12056 transitions. [2024-11-27 20:31:59,216 INFO L78 Accepts]: Start accepts. Automaton has 6917 states and 12056 transitions. Word has length 171 [2024-11-27 20:31:59,217 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:31:59,217 INFO L471 AbstractCegarLoop]: Abstraction has 6917 states and 12056 transitions. [2024-11-27 20:31:59,221 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 34.333333333333336) internal successors, (103), 3 states have internal predecessors, (103), 2 states have call successors, (23), 2 states have call predecessors, (23), 1 states have return successors, (20), 2 states have call predecessors, (20), 2 states have call successors, (20) [2024-11-27 20:31:59,221 INFO L276 IsEmpty]: Start isEmpty. Operand 6917 states and 12056 transitions. [2024-11-27 20:31:59,279 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 154 [2024-11-27 20:31:59,279 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:31:59,280 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:31:59,280 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14 [2024-11-27 20:31:59,280 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:31:59,280 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:31:59,281 INFO L85 PathProgramCache]: Analyzing trace with hash 190586159, now seen corresponding path program 1 times [2024-11-27 20:31:59,281 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:31:59,281 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [588435373] [2024-11-27 20:31:59,281 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:31:59,281 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:31:59,321 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:31:59,385 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:31:59,386 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:31:59,386 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [588435373] [2024-11-27 20:31:59,386 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [588435373] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:31:59,386 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:31:59,386 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:31:59,386 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1297270551] [2024-11-27 20:31:59,386 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:31:59,387 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:31:59,387 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:31:59,388 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:31:59,388 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:31:59,389 INFO L87 Difference]: Start difference. First operand 6917 states and 12056 transitions. Second operand has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:31:59,897 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:31:59,898 INFO L93 Difference]: Finished difference Result 17513 states and 30712 transitions. [2024-11-27 20:31:59,898 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:31:59,898 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 153 [2024-11-27 20:31:59,899 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:31:59,985 INFO L225 Difference]: With dead ends: 17513 [2024-11-27 20:31:59,985 INFO L226 Difference]: Without dead ends: 11615 [2024-11-27 20:32:00,015 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:00,016 INFO L435 NwaCegarLoop]: 599 mSDtfsCounter, 114 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 132 SdHoareTripleChecker+Valid, 1190 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:32:00,016 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [132 Valid, 1190 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:32:00,030 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 11615 states. [2024-11-27 20:32:00,959 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 11615 to 11607. [2024-11-27 20:32:00,991 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 11607 states, 9499 states have (on average 1.6756500684282556) internal successors, (15917), 9506 states have internal predecessors, (15917), 2075 states have call successors, (2075), 29 states have call predecessors, (2075), 32 states have return successors, (2270), 2073 states have call predecessors, (2270), 2074 states have call successors, (2270) [2024-11-27 20:32:01,088 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 11607 states to 11607 states and 20262 transitions. [2024-11-27 20:32:01,096 INFO L78 Accepts]: Start accepts. Automaton has 11607 states and 20262 transitions. Word has length 153 [2024-11-27 20:32:01,096 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:32:01,097 INFO L471 AbstractCegarLoop]: Abstraction has 11607 states and 20262 transitions. [2024-11-27 20:32:01,098 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 32.333333333333336) internal successors, (97), 3 states have internal predecessors, (97), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:01,098 INFO L276 IsEmpty]: Start isEmpty. Operand 11607 states and 20262 transitions. [2024-11-27 20:32:01,181 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 155 [2024-11-27 20:32:01,182 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:32:01,182 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:32:01,182 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable15 [2024-11-27 20:32:01,182 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:32:01,183 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:32:01,183 INFO L85 PathProgramCache]: Analyzing trace with hash -1428741282, now seen corresponding path program 1 times [2024-11-27 20:32:01,183 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:32:01,183 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2097579563] [2024-11-27 20:32:01,183 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:32:01,184 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:32:01,242 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:32:01,300 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:32:01,300 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:32:01,300 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2097579563] [2024-11-27 20:32:01,301 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2097579563] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:32:01,301 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:32:01,301 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:32:01,301 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1651049646] [2024-11-27 20:32:01,301 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:32:01,302 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:32:01,302 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:32:01,303 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:32:01,303 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:01,303 INFO L87 Difference]: Start difference. First operand 11607 states and 20262 transitions. Second operand has 3 states, 3 states have (on average 32.666666666666664) internal successors, (98), 3 states have internal predecessors, (98), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:02,066 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:32:02,066 INFO L93 Difference]: Finished difference Result 27708 states and 48318 transitions. [2024-11-27 20:32:02,067 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:32:02,067 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 32.666666666666664) internal successors, (98), 3 states have internal predecessors, (98), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 154 [2024-11-27 20:32:02,067 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:32:02,182 INFO L225 Difference]: With dead ends: 27708 [2024-11-27 20:32:02,182 INFO L226 Difference]: Without dead ends: 18042 [2024-11-27 20:32:02,234 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:02,234 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 112 mSDsluCounter, 563 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 130 SdHoareTripleChecker+Valid, 1160 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:32:02,235 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [130 Valid, 1160 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:32:02,298 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 18042 states. [2024-11-27 20:32:03,620 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 18042 to 18034. [2024-11-27 20:32:03,652 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 18034 states, 14723 states have (on average 1.6516334986076207) internal successors, (24317), 14730 states have internal predecessors, (24317), 3278 states have call successors, (3278), 29 states have call predecessors, (3278), 32 states have return successors, (3617), 3276 states have call predecessors, (3617), 3277 states have call successors, (3617) [2024-11-27 20:32:03,755 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 18034 states to 18034 states and 31212 transitions. [2024-11-27 20:32:03,764 INFO L78 Accepts]: Start accepts. Automaton has 18034 states and 31212 transitions. Word has length 154 [2024-11-27 20:32:03,765 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:32:03,765 INFO L471 AbstractCegarLoop]: Abstraction has 18034 states and 31212 transitions. [2024-11-27 20:32:03,765 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 32.666666666666664) internal successors, (98), 3 states have internal predecessors, (98), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:03,766 INFO L276 IsEmpty]: Start isEmpty. Operand 18034 states and 31212 transitions. [2024-11-27 20:32:03,839 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 156 [2024-11-27 20:32:03,839 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:32:03,840 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:32:03,840 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable16 [2024-11-27 20:32:03,840 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:32:03,840 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:32:03,841 INFO L85 PathProgramCache]: Analyzing trace with hash 1259303472, now seen corresponding path program 1 times [2024-11-27 20:32:03,842 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:32:03,842 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1737099410] [2024-11-27 20:32:03,842 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:32:03,842 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:32:03,885 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:32:03,948 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:32:03,949 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:32:03,949 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1737099410] [2024-11-27 20:32:03,949 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1737099410] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:32:03,949 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:32:03,949 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:32:03,949 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [386031879] [2024-11-27 20:32:03,949 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:32:03,951 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:32:03,951 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:32:03,952 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:32:03,952 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:03,953 INFO L87 Difference]: Start difference. First operand 18034 states and 31212 transitions. Second operand has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:05,508 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:32:05,509 INFO L93 Difference]: Finished difference Result 47690 states and 82842 transitions. [2024-11-27 20:32:05,509 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:32:05,509 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 155 [2024-11-27 20:32:05,510 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:32:05,707 INFO L225 Difference]: With dead ends: 47690 [2024-11-27 20:32:05,707 INFO L226 Difference]: Without dead ends: 32175 [2024-11-27 20:32:05,785 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:05,786 INFO L435 NwaCegarLoop]: 597 mSDtfsCounter, 110 mSDsluCounter, 591 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 128 SdHoareTripleChecker+Valid, 1188 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:32:05,787 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [128 Valid, 1188 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:32:05,831 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 32175 states. [2024-11-27 20:32:07,905 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 32175 to 32167. [2024-11-27 20:32:07,964 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 32167 states, 26406 states have (on average 1.6481481481481481) internal successors, (43521), 26413 states have internal predecessors, (43521), 5728 states have call successors, (5728), 29 states have call predecessors, (5728), 32 states have return successors, (6341), 5726 states have call predecessors, (6341), 5727 states have call successors, (6341) [2024-11-27 20:32:08,333 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 32167 states to 32167 states and 55590 transitions. [2024-11-27 20:32:08,349 INFO L78 Accepts]: Start accepts. Automaton has 32167 states and 55590 transitions. Word has length 155 [2024-11-27 20:32:08,350 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:32:08,350 INFO L471 AbstractCegarLoop]: Abstraction has 32167 states and 55590 transitions. [2024-11-27 20:32:08,350 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:08,350 INFO L276 IsEmpty]: Start isEmpty. Operand 32167 states and 55590 transitions. [2024-11-27 20:32:08,455 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 157 [2024-11-27 20:32:08,455 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:32:08,456 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:32:08,456 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable17 [2024-11-27 20:32:08,456 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:32:08,458 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:32:08,458 INFO L85 PathProgramCache]: Analyzing trace with hash 1699386808, now seen corresponding path program 1 times [2024-11-27 20:32:08,458 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:32:08,458 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1780661204] [2024-11-27 20:32:08,459 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:32:08,459 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:32:08,502 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:32:08,562 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:32:08,562 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:32:08,563 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1780661204] [2024-11-27 20:32:08,563 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1780661204] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:32:08,563 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:32:08,563 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:32:08,563 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [608430037] [2024-11-27 20:32:08,563 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:32:08,564 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:32:08,564 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:32:08,564 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:32:08,564 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:08,565 INFO L87 Difference]: Start difference. First operand 32167 states and 55590 transitions. Second operand has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:11,029 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:32:11,030 INFO L93 Difference]: Finished difference Result 87752 states and 152109 transitions. [2024-11-27 20:32:11,030 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:32:11,030 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 156 [2024-11-27 20:32:11,031 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:32:11,527 INFO L225 Difference]: With dead ends: 87752 [2024-11-27 20:32:11,527 INFO L226 Difference]: Without dead ends: 58943 [2024-11-27 20:32:11,604 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:11,604 INFO L435 NwaCegarLoop]: 606 mSDtfsCounter, 108 mSDsluCounter, 592 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 126 SdHoareTripleChecker+Valid, 1198 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:32:11,605 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [126 Valid, 1198 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:32:11,658 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 58943 states. [2024-11-27 20:32:14,684 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 58943 to 58935. [2024-11-27 20:32:14,781 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 58935 states, 48661 states have (on average 1.6435132857935513) internal successors, (79975), 48668 states have internal predecessors, (79975), 10241 states have call successors, (10241), 29 states have call predecessors, (10241), 32 states have return successors, (11386), 10239 states have call predecessors, (11386), 10240 states have call successors, (11386) [2024-11-27 20:32:15,021 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 58935 states to 58935 states and 101602 transitions. [2024-11-27 20:32:15,049 INFO L78 Accepts]: Start accepts. Automaton has 58935 states and 101602 transitions. Word has length 156 [2024-11-27 20:32:15,050 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:32:15,050 INFO L471 AbstractCegarLoop]: Abstraction has 58935 states and 101602 transitions. [2024-11-27 20:32:15,050 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.333333333333336) internal successors, (100), 3 states have internal predecessors, (100), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:15,050 INFO L276 IsEmpty]: Start isEmpty. Operand 58935 states and 101602 transitions. [2024-11-27 20:32:15,160 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 158 [2024-11-27 20:32:15,160 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:32:15,160 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:32:15,161 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18 [2024-11-27 20:32:15,161 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:32:15,161 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:32:15,162 INFO L85 PathProgramCache]: Analyzing trace with hash 296354192, now seen corresponding path program 1 times [2024-11-27 20:32:15,162 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:32:15,162 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1345630692] [2024-11-27 20:32:15,162 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:32:15,162 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:32:15,202 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:32:15,283 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 38 trivial. 0 not checked. [2024-11-27 20:32:15,284 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:32:15,284 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1345630692] [2024-11-27 20:32:15,284 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1345630692] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-27 20:32:15,284 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-27 20:32:15,284 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-27 20:32:15,285 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1081639450] [2024-11-27 20:32:15,285 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-27 20:32:15,286 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-27 20:32:15,287 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:32:15,287 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-27 20:32:15,287 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:15,288 INFO L87 Difference]: Start difference. First operand 58935 states and 101602 transitions. Second operand has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:19,151 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:32:19,152 INFO L93 Difference]: Finished difference Result 110324 states and 190599 transitions. [2024-11-27 20:32:19,152 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-27 20:32:19,152 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) Word has length 157 [2024-11-27 20:32:19,153 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:32:19,754 INFO L225 Difference]: With dead ends: 110324 [2024-11-27 20:32:19,754 INFO L226 Difference]: Without dead ends: 110113 [2024-11-27 20:32:19,801 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-27 20:32:19,805 INFO L435 NwaCegarLoop]: 606 mSDtfsCounter, 103 mSDsluCounter, 596 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 1202 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-27 20:32:19,806 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 1202 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-27 20:32:19,891 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 110113 states. [2024-11-27 20:32:24,663 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 110113 to 110105. [2024-11-27 20:32:24,773 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 110105 states, 91463 states have (on average 1.6377551578233822) internal successors, (149794), 91470 states have internal predecessors, (149794), 18609 states have call successors, (18609), 29 states have call predecessors, (18609), 32 states have return successors, (20800), 18607 states have call predecessors, (20800), 18608 states have call successors, (20800) [2024-11-27 20:32:25,605 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 110105 states to 110105 states and 189203 transitions. [2024-11-27 20:32:25,637 INFO L78 Accepts]: Start accepts. Automaton has 110105 states and 189203 transitions. Word has length 157 [2024-11-27 20:32:25,637 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-27 20:32:25,637 INFO L471 AbstractCegarLoop]: Abstraction has 110105 states and 189203 transitions. [2024-11-27 20:32:25,638 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.666666666666664) internal successors, (101), 3 states have internal predecessors, (101), 2 states have call successors, (20), 2 states have call predecessors, (20), 1 states have return successors, (17), 2 states have call predecessors, (17), 2 states have call successors, (17) [2024-11-27 20:32:25,638 INFO L276 IsEmpty]: Start isEmpty. Operand 110105 states and 189203 transitions. [2024-11-27 20:32:25,789 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 159 [2024-11-27 20:32:25,790 INFO L210 NwaCegarLoop]: Found error trace [2024-11-27 20:32:25,790 INFO L218 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-27 20:32:25,790 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19 [2024-11-27 20:32:25,790 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION === [outgoing__wrappee__EncryptErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-27 20:32:25,791 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-27 20:32:25,791 INFO L85 PathProgramCache]: Analyzing trace with hash 1609547063, now seen corresponding path program 1 times [2024-11-27 20:32:25,792 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-27 20:32:25,792 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1777390515] [2024-11-27 20:32:25,795 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:32:25,796 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-27 20:32:25,872 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:32:26,477 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-27 20:32:26,477 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-27 20:32:26,477 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1777390515] [2024-11-27 20:32:26,478 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1777390515] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-27 20:32:26,478 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1060356570] [2024-11-27 20:32:26,478 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-27 20:32:26,478 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-27 20:32:26,478 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-27 20:32:26,481 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-27 20:32:26,487 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_a9ad03f1-040e-43eb-a7a4-7ae66b397266/bin/uautomizer-verify-aQ6SnzHsRB/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-11-27 20:32:27,000 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-27 20:32:27,006 INFO L256 TraceCheckSpWp]: Trace formula consists of 1197 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-27 20:32:27,013 INFO L279 TraceCheckSpWp]: Computing forward predicates... [2024-11-27 20:32:27,432 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 18 proven. 6 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2024-11-27 20:32:27,432 INFO L312 TraceCheckSpWp]: Computing backward predicates... [2024-11-27 20:32:28,080 INFO L134 CoverageAnalysis]: Checked inductivity of 38 backedges. 2 proven. 8 refuted. 0 times theorem prover too weak. 28 trivial. 0 not checked. [2024-11-27 20:32:28,081 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1060356570] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-27 20:32:28,081 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-27 20:32:28,081 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 9, 9] total 28 [2024-11-27 20:32:28,081 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [704978615] [2024-11-27 20:32:28,081 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-27 20:32:28,082 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 28 states [2024-11-27 20:32:28,082 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-27 20:32:28,084 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 28 interpolants. [2024-11-27 20:32:28,085 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=68, Invalid=688, Unknown=0, NotChecked=0, Total=756 [2024-11-27 20:32:28,085 INFO L87 Difference]: Start difference. First operand 110105 states and 189203 transitions. Second operand has 28 states, 26 states have (on average 9.807692307692308) internal successors, (255), 24 states have internal predecessors, (255), 9 states have call successors, (52), 8 states have call predecessors, (52), 12 states have return successors, (45), 11 states have call predecessors, (45), 9 states have call successors, (45) [2024-11-27 20:32:54,665 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-27 20:32:54,665 INFO L93 Difference]: Finished difference Result 438967 states and 778185 transitions. [2024-11-27 20:32:54,666 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 89 states. [2024-11-27 20:32:54,666 INFO L78 Accepts]: Start accepts. Automaton has has 28 states, 26 states have (on average 9.807692307692308) internal successors, (255), 24 states have internal predecessors, (255), 9 states have call successors, (52), 8 states have call predecessors, (52), 12 states have return successors, (45), 11 states have call predecessors, (45), 9 states have call successors, (45) Word has length 158 [2024-11-27 20:32:54,667 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-27 20:32:57,738 INFO L225 Difference]: With dead ends: 438967 [2024-11-27 20:32:57,738 INFO L226 Difference]: Without dead ends: 438760