./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec4_product40.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 791161d1 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec4_product40.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 77b56c936ee2ca54668f40aefbb58be12afe7e576f3b6d14c65eab965872c215 --- Real Ultimate output --- This is Ultimate 0.2.2-?-791161d [2022-07-22 17:39:05,586 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-07-22 17:39:05,587 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-07-22 17:39:05,617 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-07-22 17:39:05,623 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-07-22 17:39:05,624 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-07-22 17:39:05,625 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-07-22 17:39:05,632 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-07-22 17:39:05,633 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-07-22 17:39:05,633 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-07-22 17:39:05,634 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-07-22 17:39:05,635 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-07-22 17:39:05,635 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-07-22 17:39:05,636 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-07-22 17:39:05,636 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-07-22 17:39:05,637 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-07-22 17:39:05,638 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-07-22 17:39:05,638 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-07-22 17:39:05,640 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-07-22 17:39:05,641 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-07-22 17:39:05,642 INFO L181 SettingsManager]: Resetting HornVerifier preferences to default values [2022-07-22 17:39:05,642 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-07-22 17:39:05,643 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-07-22 17:39:05,644 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-07-22 17:39:05,645 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-07-22 17:39:05,647 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-07-22 17:39:05,647 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-07-22 17:39:05,647 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-07-22 17:39:05,648 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-07-22 17:39:05,648 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-07-22 17:39:05,649 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-07-22 17:39:05,649 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-07-22 17:39:05,649 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-07-22 17:39:05,650 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-07-22 17:39:05,650 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-07-22 17:39:05,651 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-07-22 17:39:05,651 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-07-22 17:39:05,652 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-07-22 17:39:05,652 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-07-22 17:39:05,652 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-07-22 17:39:05,653 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-07-22 17:39:05,653 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-07-22 17:39:05,658 INFO L101 SettingsManager]: Beginning loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2022-07-22 17:39:05,690 INFO L113 SettingsManager]: Loading preferences was successful [2022-07-22 17:39:05,690 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-07-22 17:39:05,690 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-07-22 17:39:05,690 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-07-22 17:39:05,691 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-07-22 17:39:05,692 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-07-22 17:39:05,692 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-07-22 17:39:05,692 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-07-22 17:39:05,692 INFO L138 SettingsManager]: * Use SBE=true [2022-07-22 17:39:05,693 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-07-22 17:39:05,693 INFO L138 SettingsManager]: * sizeof long=4 [2022-07-22 17:39:05,693 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-07-22 17:39:05,693 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * sizeof long double=12 [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-07-22 17:39:05,694 INFO L138 SettingsManager]: * Use constant arrays=true [2022-07-22 17:39:05,695 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-07-22 17:39:05,695 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-07-22 17:39:05,695 INFO L138 SettingsManager]: * Size of a code block=SequenceOfStatements [2022-07-22 17:39:05,696 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-07-22 17:39:05,696 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-07-22 17:39:05,696 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Trace refinement strategy=CAMEL [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2022-07-22 17:39:05,697 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-07-22 17:39:05,698 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 77b56c936ee2ca54668f40aefbb58be12afe7e576f3b6d14c65eab965872c215 [2022-07-22 17:39:05,930 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-07-22 17:39:05,945 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-07-22 17:39:05,947 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-07-22 17:39:05,948 INFO L271 PluginConnector]: Initializing CDTParser... [2022-07-22 17:39:05,949 INFO L275 PluginConnector]: CDTParser initialized [2022-07-22 17:39:05,950 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec4_product40.cil.c [2022-07-22 17:39:06,018 INFO L220 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/862f8463d/65905eed437440c4afb2a5421a933c42/FLAGefb84ee7a [2022-07-22 17:39:06,421 INFO L306 CDTParser]: Found 1 translation units. [2022-07-22 17:39:06,424 INFO L160 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product40.cil.c [2022-07-22 17:39:06,442 INFO L349 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/862f8463d/65905eed437440c4afb2a5421a933c42/FLAGefb84ee7a [2022-07-22 17:39:06,457 INFO L357 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/862f8463d/65905eed437440c4afb2a5421a933c42 [2022-07-22 17:39:06,458 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-07-22 17:39:06,460 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-07-22 17:39:06,462 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-07-22 17:39:06,462 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-07-22 17:39:06,464 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-07-22 17:39:06,465 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,465 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@5b0f7f86 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06, skipping insertion in model container [2022-07-22 17:39:06,465 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,470 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-07-22 17:39:06,511 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-07-22 17:39:06,656 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product40.cil.c[5400,5413] [2022-07-22 17:39:06,705 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-07-22 17:39:06,711 INFO L203 MainTranslator]: Completed pre-run [2022-07-22 17:39:06,745 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product40.cil.c[5400,5413] [2022-07-22 17:39:06,771 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-07-22 17:39:06,782 INFO L208 MainTranslator]: Completed translation [2022-07-22 17:39:06,782 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06 WrapperNode [2022-07-22 17:39:06,782 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-07-22 17:39:06,783 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-07-22 17:39:06,783 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-07-22 17:39:06,783 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-07-22 17:39:06,799 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,808 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,824 INFO L137 Inliner]: procedures = 55, calls = 156, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 257 [2022-07-22 17:39:06,825 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-07-22 17:39:06,825 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-07-22 17:39:06,826 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-07-22 17:39:06,826 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-07-22 17:39:06,831 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,831 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,834 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,843 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,852 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,866 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,867 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,869 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-07-22 17:39:06,870 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-07-22 17:39:06,870 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-07-22 17:39:06,870 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-07-22 17:39:06,871 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (1/1) ... [2022-07-22 17:39:06,895 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-07-22 17:39:06,904 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-07-22 17:39:06,921 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-07-22 17:39:06,951 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-07-22 17:39:06,969 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-07-22 17:39:06,969 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-07-22 17:39:06,969 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-07-22 17:39:06,969 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-07-22 17:39:06,969 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-07-22 17:39:06,970 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-07-22 17:39:06,970 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-07-22 17:39:06,970 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2022-07-22 17:39:06,970 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2022-07-22 17:39:06,970 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-07-22 17:39:06,970 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-07-22 17:39:06,970 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2022-07-22 17:39:06,971 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2022-07-22 17:39:06,971 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-07-22 17:39:06,971 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-07-22 17:39:06,971 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-07-22 17:39:06,971 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-07-22 17:39:06,971 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-07-22 17:39:07,047 INFO L234 CfgBuilder]: Building ICFG [2022-07-22 17:39:07,049 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2022-07-22 17:39:07,331 INFO L275 CfgBuilder]: Performing block encoding [2022-07-22 17:39:07,342 INFO L294 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-07-22 17:39:07,344 INFO L299 CfgBuilder]: Removed 2 assume(true) statements. [2022-07-22 17:39:07,346 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.07 05:39:07 BoogieIcfgContainer [2022-07-22 17:39:07,346 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-07-22 17:39:07,347 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-07-22 17:39:07,347 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-07-22 17:39:07,351 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-07-22 17:39:07,351 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 22.07 05:39:06" (1/3) ... [2022-07-22 17:39:07,352 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3a630c40 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.07 05:39:07, skipping insertion in model container [2022-07-22 17:39:07,352 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:06" (2/3) ... [2022-07-22 17:39:07,352 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@3a630c40 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.07 05:39:07, skipping insertion in model container [2022-07-22 17:39:07,352 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.07 05:39:07" (3/3) ... [2022-07-22 17:39:07,353 INFO L111 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product40.cil.c [2022-07-22 17:39:07,363 INFO L201 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-07-22 17:39:07,363 INFO L160 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-07-22 17:39:07,401 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-07-22 17:39:07,405 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=de.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings@58d3c2fd, mLbeIndependenceSettings=de.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings@529d569a [2022-07-22 17:39:07,405 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-07-22 17:39:07,408 INFO L276 IsEmpty]: Start isEmpty. Operand has 88 states, 67 states have (on average 1.3880597014925373) internal successors, (93), 76 states have internal predecessors, (93), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) [2022-07-22 17:39:07,416 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2022-07-22 17:39:07,416 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:07,417 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:07,417 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:07,421 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:07,421 INFO L85 PathProgramCache]: Analyzing trace with hash -1180075740, now seen corresponding path program 1 times [2022-07-22 17:39:07,427 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:07,429 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [634047191] [2022-07-22 17:39:07,429 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:07,430 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:07,555 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:07,607 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:07,608 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:07,608 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [634047191] [2022-07-22 17:39:07,608 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [634047191] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:07,609 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:07,609 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-07-22 17:39:07,610 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1955830260] [2022-07-22 17:39:07,610 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:07,613 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-07-22 17:39:07,613 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:07,635 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-07-22 17:39:07,636 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-07-22 17:39:07,638 INFO L87 Difference]: Start difference. First operand has 88 states, 67 states have (on average 1.3880597014925373) internal successors, (93), 76 states have internal predecessors, (93), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 9 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:07,674 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:07,675 INFO L93 Difference]: Finished difference Result 168 states and 229 transitions. [2022-07-22 17:39:07,675 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-07-22 17:39:07,676 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2022-07-22 17:39:07,677 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:07,687 INFO L225 Difference]: With dead ends: 168 [2022-07-22 17:39:07,687 INFO L226 Difference]: Without dead ends: 79 [2022-07-22 17:39:07,691 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-07-22 17:39:07,693 INFO L413 NwaCegarLoop]: 111 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 111 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:07,695 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 111 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:07,706 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 79 states. [2022-07-22 17:39:07,736 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 79 to 79. [2022-07-22 17:39:07,738 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 79 states, 60 states have (on average 1.3166666666666667) internal successors, (79), 68 states have internal predecessors, (79), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2022-07-22 17:39:07,743 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 79 states to 79 states and 102 transitions. [2022-07-22 17:39:07,744 INFO L78 Accepts]: Start accepts. Automaton has 79 states and 102 transitions. Word has length 19 [2022-07-22 17:39:07,744 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:07,745 INFO L495 AbstractCegarLoop]: Abstraction has 79 states and 102 transitions. [2022-07-22 17:39:07,745 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:07,745 INFO L276 IsEmpty]: Start isEmpty. Operand 79 states and 102 transitions. [2022-07-22 17:39:07,748 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-07-22 17:39:07,748 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:07,748 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:07,749 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-07-22 17:39:07,749 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:07,750 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:07,750 INFO L85 PathProgramCache]: Analyzing trace with hash 595736866, now seen corresponding path program 1 times [2022-07-22 17:39:07,750 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:07,751 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1937065760] [2022-07-22 17:39:07,751 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:07,751 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:07,785 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:07,835 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:07,835 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:07,836 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1937065760] [2022-07-22 17:39:07,836 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1937065760] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:07,836 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:07,836 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-07-22 17:39:07,836 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1932292675] [2022-07-22 17:39:07,837 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:07,838 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-07-22 17:39:07,838 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:07,839 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-07-22 17:39:07,839 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-07-22 17:39:07,839 INFO L87 Difference]: Start difference. First operand 79 states and 102 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:07,855 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:07,855 INFO L93 Difference]: Finished difference Result 119 states and 153 transitions. [2022-07-22 17:39:07,856 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-07-22 17:39:07,856 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20 [2022-07-22 17:39:07,856 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:07,857 INFO L225 Difference]: With dead ends: 119 [2022-07-22 17:39:07,858 INFO L226 Difference]: Without dead ends: 70 [2022-07-22 17:39:07,860 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-07-22 17:39:07,861 INFO L413 NwaCegarLoop]: 89 mSDtfsCounter, 17 mSDsluCounter, 67 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 156 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:07,862 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 156 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:07,864 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2022-07-22 17:39:07,868 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2022-07-22 17:39:07,869 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 54 states have (on average 1.3333333333333333) internal successors, (72), 62 states have internal predecessors, (72), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 6 states have call predecessors, (9), 9 states have call successors, (9) [2022-07-22 17:39:07,869 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2022-07-22 17:39:07,869 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 20 [2022-07-22 17:39:07,869 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:07,869 INFO L495 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2022-07-22 17:39:07,870 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:07,870 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2022-07-22 17:39:07,870 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2022-07-22 17:39:07,871 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:07,871 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:07,871 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-07-22 17:39:07,871 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:07,871 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:07,872 INFO L85 PathProgramCache]: Analyzing trace with hash 369626779, now seen corresponding path program 1 times [2022-07-22 17:39:07,872 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:07,872 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [65482093] [2022-07-22 17:39:07,872 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:07,872 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:07,909 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:07,957 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:07,958 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:07,958 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [65482093] [2022-07-22 17:39:07,958 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [65482093] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:07,958 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:07,959 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-07-22 17:39:07,959 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [982169321] [2022-07-22 17:39:07,959 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:07,960 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-07-22 17:39:07,960 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:07,961 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-07-22 17:39:07,961 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-07-22 17:39:07,961 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:08,048 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:08,048 INFO L93 Difference]: Finished difference Result 171 states and 224 transitions. [2022-07-22 17:39:08,050 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2022-07-22 17:39:08,051 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 25 [2022-07-22 17:39:08,051 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:08,051 INFO L225 Difference]: With dead ends: 171 [2022-07-22 17:39:08,052 INFO L226 Difference]: Without dead ends: 108 [2022-07-22 17:39:08,052 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=22, Invalid=34, Unknown=0, NotChecked=0, Total=56 [2022-07-22 17:39:08,053 INFO L413 NwaCegarLoop]: 98 mSDtfsCounter, 153 mSDsluCounter, 192 mSDsCounter, 0 mSdLazyCounter, 12 mSolverCounterSat, 21 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 153 SdHoareTripleChecker+Valid, 290 SdHoareTripleChecker+Invalid, 33 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 21 IncrementalHoareTripleChecker+Valid, 12 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:08,053 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [153 Valid, 290 Invalid, 33 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [21 Valid, 12 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:08,053 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 108 states. [2022-07-22 17:39:08,061 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 108 to 105. [2022-07-22 17:39:08,061 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 105 states, 81 states have (on average 1.3580246913580247) internal successors, (110), 92 states have internal predecessors, (110), 13 states have call successors, (13), 10 states have call predecessors, (13), 10 states have return successors, (14), 9 states have call predecessors, (14), 13 states have call successors, (14) [2022-07-22 17:39:08,062 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 105 states to 105 states and 137 transitions. [2022-07-22 17:39:08,062 INFO L78 Accepts]: Start accepts. Automaton has 105 states and 137 transitions. Word has length 25 [2022-07-22 17:39:08,062 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:08,062 INFO L495 AbstractCegarLoop]: Abstraction has 105 states and 137 transitions. [2022-07-22 17:39:08,062 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:08,062 INFO L276 IsEmpty]: Start isEmpty. Operand 105 states and 137 transitions. [2022-07-22 17:39:08,063 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2022-07-22 17:39:08,063 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:08,063 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:08,063 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-07-22 17:39:08,063 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:08,063 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:08,064 INFO L85 PathProgramCache]: Analyzing trace with hash 779702988, now seen corresponding path program 1 times [2022-07-22 17:39:08,064 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:08,064 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [116541478] [2022-07-22 17:39:08,064 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:08,064 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:08,077 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,113 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:08,114 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:08,114 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [116541478] [2022-07-22 17:39:08,114 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [116541478] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:08,114 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:08,114 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2022-07-22 17:39:08,114 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1499754218] [2022-07-22 17:39:08,115 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:08,115 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-07-22 17:39:08,115 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:08,115 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-07-22 17:39:08,116 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-07-22 17:39:08,116 INFO L87 Difference]: Start difference. First operand 105 states and 137 transitions. Second operand has 5 states, 5 states have (on average 5.4) internal successors, (27), 4 states have internal predecessors, (27), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:08,162 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:08,162 INFO L93 Difference]: Finished difference Result 289 states and 396 transitions. [2022-07-22 17:39:08,163 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-07-22 17:39:08,163 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.4) internal successors, (27), 4 states have internal predecessors, (27), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 28 [2022-07-22 17:39:08,163 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:08,166 INFO L225 Difference]: With dead ends: 289 [2022-07-22 17:39:08,166 INFO L226 Difference]: Without dead ends: 191 [2022-07-22 17:39:08,168 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:08,176 INFO L413 NwaCegarLoop]: 93 mSDtfsCounter, 61 mSDsluCounter, 264 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 357 SdHoareTripleChecker+Invalid, 29 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:08,176 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 357 Invalid, 29 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:08,177 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 191 states. [2022-07-22 17:39:08,195 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 191 to 191. [2022-07-22 17:39:08,195 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 191 states, 146 states have (on average 1.3356164383561644) internal successors, (195), 165 states have internal predecessors, (195), 26 states have call successors, (26), 20 states have call predecessors, (26), 18 states have return successors, (31), 16 states have call predecessors, (31), 26 states have call successors, (31) [2022-07-22 17:39:08,196 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 191 states to 191 states and 252 transitions. [2022-07-22 17:39:08,197 INFO L78 Accepts]: Start accepts. Automaton has 191 states and 252 transitions. Word has length 28 [2022-07-22 17:39:08,197 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:08,197 INFO L495 AbstractCegarLoop]: Abstraction has 191 states and 252 transitions. [2022-07-22 17:39:08,197 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.4) internal successors, (27), 4 states have internal predecessors, (27), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:08,197 INFO L276 IsEmpty]: Start isEmpty. Operand 191 states and 252 transitions. [2022-07-22 17:39:08,199 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 31 [2022-07-22 17:39:08,199 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:08,199 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:08,199 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-07-22 17:39:08,199 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:08,199 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:08,199 INFO L85 PathProgramCache]: Analyzing trace with hash -926135279, now seen corresponding path program 1 times [2022-07-22 17:39:08,200 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:08,200 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [413230405] [2022-07-22 17:39:08,200 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:08,200 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:08,216 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,238 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:08,238 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:08,238 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [413230405] [2022-07-22 17:39:08,239 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [413230405] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:08,239 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:08,239 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-07-22 17:39:08,239 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1068557793] [2022-07-22 17:39:08,239 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:08,239 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-07-22 17:39:08,239 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:08,240 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-07-22 17:39:08,240 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-07-22 17:39:08,240 INFO L87 Difference]: Start difference. First operand 191 states and 252 transitions. Second operand has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 2 states have internal predecessors, (29), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:08,274 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:08,274 INFO L93 Difference]: Finished difference Result 426 states and 580 transitions. [2022-07-22 17:39:08,274 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-07-22 17:39:08,275 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 2 states have internal predecessors, (29), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 30 [2022-07-22 17:39:08,276 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:08,278 INFO L225 Difference]: With dead ends: 426 [2022-07-22 17:39:08,278 INFO L226 Difference]: Without dead ends: 242 [2022-07-22 17:39:08,278 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-07-22 17:39:08,279 INFO L413 NwaCegarLoop]: 92 mSDtfsCounter, 52 mSDsluCounter, 56 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 52 SdHoareTripleChecker+Valid, 148 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:08,279 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [52 Valid, 148 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:08,280 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 242 states. [2022-07-22 17:39:08,303 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 242 to 238. [2022-07-22 17:39:08,304 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 238 states, 186 states have (on average 1.2903225806451613) internal successors, (240), 200 states have internal predecessors, (240), 27 states have call successors, (27), 26 states have call predecessors, (27), 24 states have return successors, (40), 24 states have call predecessors, (40), 27 states have call successors, (40) [2022-07-22 17:39:08,305 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 238 states to 238 states and 307 transitions. [2022-07-22 17:39:08,305 INFO L78 Accepts]: Start accepts. Automaton has 238 states and 307 transitions. Word has length 30 [2022-07-22 17:39:08,305 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:08,305 INFO L495 AbstractCegarLoop]: Abstraction has 238 states and 307 transitions. [2022-07-22 17:39:08,305 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.666666666666666) internal successors, (29), 2 states have internal predecessors, (29), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:08,305 INFO L276 IsEmpty]: Start isEmpty. Operand 238 states and 307 transitions. [2022-07-22 17:39:08,306 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2022-07-22 17:39:08,306 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:08,306 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:08,306 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-07-22 17:39:08,307 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:08,307 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:08,307 INFO L85 PathProgramCache]: Analyzing trace with hash -1951241998, now seen corresponding path program 1 times [2022-07-22 17:39:08,307 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:08,307 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [760118467] [2022-07-22 17:39:08,307 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:08,307 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:08,322 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,351 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:08,353 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,354 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:08,355 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:08,355 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [760118467] [2022-07-22 17:39:08,355 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [760118467] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:08,355 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:08,355 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-07-22 17:39:08,355 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1056708171] [2022-07-22 17:39:08,355 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:08,355 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-07-22 17:39:08,355 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:08,356 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-07-22 17:39:08,356 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2022-07-22 17:39:08,356 INFO L87 Difference]: Start difference. First operand 238 states and 307 transitions. Second operand has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-07-22 17:39:08,528 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:08,529 INFO L93 Difference]: Finished difference Result 290 states and 374 transitions. [2022-07-22 17:39:08,529 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2022-07-22 17:39:08,529 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 32 [2022-07-22 17:39:08,534 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:08,535 INFO L225 Difference]: With dead ends: 290 [2022-07-22 17:39:08,535 INFO L226 Difference]: Without dead ends: 288 [2022-07-22 17:39:08,535 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 14 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=45, Invalid=87, Unknown=0, NotChecked=0, Total=132 [2022-07-22 17:39:08,536 INFO L413 NwaCegarLoop]: 102 mSDtfsCounter, 122 mSDsluCounter, 258 mSDsCounter, 0 mSdLazyCounter, 169 mSolverCounterSat, 33 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 126 SdHoareTripleChecker+Valid, 360 SdHoareTripleChecker+Invalid, 202 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 33 IncrementalHoareTripleChecker+Valid, 169 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:08,536 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [126 Valid, 360 Invalid, 202 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [33 Valid, 169 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:08,537 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 288 states. [2022-07-22 17:39:08,549 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 288 to 271. [2022-07-22 17:39:08,551 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 271 states, 211 states have (on average 1.2701421800947867) internal successors, (268), 231 states have internal predecessors, (268), 30 states have call successors, (30), 26 states have call predecessors, (30), 29 states have return successors, (50), 26 states have call predecessors, (50), 30 states have call successors, (50) [2022-07-22 17:39:08,553 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 271 states to 271 states and 348 transitions. [2022-07-22 17:39:08,553 INFO L78 Accepts]: Start accepts. Automaton has 271 states and 348 transitions. Word has length 32 [2022-07-22 17:39:08,554 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:08,554 INFO L495 AbstractCegarLoop]: Abstraction has 271 states and 348 transitions. [2022-07-22 17:39:08,554 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 5 states have internal predecessors, (29), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2022-07-22 17:39:08,554 INFO L276 IsEmpty]: Start isEmpty. Operand 271 states and 348 transitions. [2022-07-22 17:39:08,558 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2022-07-22 17:39:08,558 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:08,558 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:08,558 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-07-22 17:39:08,559 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:08,559 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:08,559 INFO L85 PathProgramCache]: Analyzing trace with hash -1509571819, now seen corresponding path program 1 times [2022-07-22 17:39:08,559 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:08,559 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1169332805] [2022-07-22 17:39:08,559 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:08,559 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:08,581 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,608 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:08,609 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,615 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 27 [2022-07-22 17:39:08,618 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,622 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:08,627 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:08,627 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1169332805] [2022-07-22 17:39:08,627 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1169332805] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:08,627 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:08,627 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-07-22 17:39:08,628 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1421766625] [2022-07-22 17:39:08,628 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:08,628 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-07-22 17:39:08,628 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:08,628 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-07-22 17:39:08,629 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-07-22 17:39:08,629 INFO L87 Difference]: Start difference. First operand 271 states and 348 transitions. Second operand has 5 states, 5 states have (on average 8.2) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-07-22 17:39:08,767 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:08,767 INFO L93 Difference]: Finished difference Result 583 states and 743 transitions. [2022-07-22 17:39:08,768 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2022-07-22 17:39:08,768 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.2) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 46 [2022-07-22 17:39:08,768 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:08,770 INFO L225 Difference]: With dead ends: 583 [2022-07-22 17:39:08,770 INFO L226 Difference]: Without dead ends: 319 [2022-07-22 17:39:08,772 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 12 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=22, Invalid=34, Unknown=0, NotChecked=0, Total=56 [2022-07-22 17:39:08,773 INFO L413 NwaCegarLoop]: 114 mSDtfsCounter, 145 mSDsluCounter, 163 mSDsCounter, 0 mSdLazyCounter, 131 mSolverCounterSat, 34 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 148 SdHoareTripleChecker+Valid, 277 SdHoareTripleChecker+Invalid, 165 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 34 IncrementalHoareTripleChecker+Valid, 131 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:08,773 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [148 Valid, 277 Invalid, 165 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [34 Valid, 131 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:08,774 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 319 states. [2022-07-22 17:39:08,795 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 319 to 291. [2022-07-22 17:39:08,796 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 291 states, 228 states have (on average 1.2543859649122806) internal successors, (286), 248 states have internal predecessors, (286), 30 states have call successors, (30), 26 states have call predecessors, (30), 32 states have return successors, (50), 28 states have call predecessors, (50), 30 states have call successors, (50) [2022-07-22 17:39:08,797 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 291 states to 291 states and 366 transitions. [2022-07-22 17:39:08,797 INFO L78 Accepts]: Start accepts. Automaton has 291 states and 366 transitions. Word has length 46 [2022-07-22 17:39:08,799 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:08,799 INFO L495 AbstractCegarLoop]: Abstraction has 291 states and 366 transitions. [2022-07-22 17:39:08,799 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.2) internal successors, (41), 3 states have internal predecessors, (41), 3 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-07-22 17:39:08,799 INFO L276 IsEmpty]: Start isEmpty. Operand 291 states and 366 transitions. [2022-07-22 17:39:08,800 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2022-07-22 17:39:08,801 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:08,801 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:08,801 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-07-22 17:39:08,801 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:08,802 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:08,802 INFO L85 PathProgramCache]: Analyzing trace with hash 1923842840, now seen corresponding path program 1 times [2022-07-22 17:39:08,802 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:08,802 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [782759470] [2022-07-22 17:39:08,802 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:08,802 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:08,825 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,846 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:08,847 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,850 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:08,852 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:08,883 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:08,885 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:08,885 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [782759470] [2022-07-22 17:39:08,885 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [782759470] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:08,885 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:08,885 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-07-22 17:39:08,886 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [125540667] [2022-07-22 17:39:08,886 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:08,886 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-07-22 17:39:08,891 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:08,891 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-07-22 17:39:08,891 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:08,892 INFO L87 Difference]: Start difference. First operand 291 states and 366 transitions. Second operand has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-07-22 17:39:09,063 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:09,064 INFO L93 Difference]: Finished difference Result 611 states and 781 transitions. [2022-07-22 17:39:09,064 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-07-22 17:39:09,064 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 43 [2022-07-22 17:39:09,064 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:09,066 INFO L225 Difference]: With dead ends: 611 [2022-07-22 17:39:09,066 INFO L226 Difference]: Without dead ends: 327 [2022-07-22 17:39:09,066 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2022-07-22 17:39:09,067 INFO L413 NwaCegarLoop]: 84 mSDtfsCounter, 123 mSDsluCounter, 253 mSDsCounter, 0 mSdLazyCounter, 217 mSolverCounterSat, 42 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 123 SdHoareTripleChecker+Valid, 337 SdHoareTripleChecker+Invalid, 259 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 42 IncrementalHoareTripleChecker+Valid, 217 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:09,067 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [123 Valid, 337 Invalid, 259 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [42 Valid, 217 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:09,068 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 327 states. [2022-07-22 17:39:09,079 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 327 to 297. [2022-07-22 17:39:09,079 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 297 states, 234 states have (on average 1.2478632478632479) internal successors, (292), 254 states have internal predecessors, (292), 30 states have call successors, (30), 26 states have call predecessors, (30), 32 states have return successors, (50), 28 states have call predecessors, (50), 30 states have call successors, (50) [2022-07-22 17:39:09,080 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 297 states to 297 states and 372 transitions. [2022-07-22 17:39:09,080 INFO L78 Accepts]: Start accepts. Automaton has 297 states and 372 transitions. Word has length 43 [2022-07-22 17:39:09,080 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:09,081 INFO L495 AbstractCegarLoop]: Abstraction has 297 states and 372 transitions. [2022-07-22 17:39:09,081 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-07-22 17:39:09,081 INFO L276 IsEmpty]: Start isEmpty. Operand 297 states and 372 transitions. [2022-07-22 17:39:09,081 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2022-07-22 17:39:09,081 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:09,081 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:09,081 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-07-22 17:39:09,081 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:09,082 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:09,082 INFO L85 PathProgramCache]: Analyzing trace with hash 912725590, now seen corresponding path program 1 times [2022-07-22 17:39:09,082 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:09,082 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [97363653] [2022-07-22 17:39:09,082 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:09,082 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:09,091 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,108 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:09,109 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,114 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:09,116 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,131 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:09,132 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:09,132 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [97363653] [2022-07-22 17:39:09,132 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [97363653] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:09,132 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:09,132 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-07-22 17:39:09,132 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [415680438] [2022-07-22 17:39:09,132 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:09,134 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-07-22 17:39:09,134 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:09,134 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-07-22 17:39:09,134 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2022-07-22 17:39:09,135 INFO L87 Difference]: Start difference. First operand 297 states and 372 transitions. Second operand has 8 states, 8 states have (on average 4.75) internal successors, (38), 6 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-07-22 17:39:09,329 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:09,329 INFO L93 Difference]: Finished difference Result 582 states and 742 transitions. [2022-07-22 17:39:09,329 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-07-22 17:39:09,329 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 4.75) internal successors, (38), 6 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 43 [2022-07-22 17:39:09,330 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:09,331 INFO L225 Difference]: With dead ends: 582 [2022-07-22 17:39:09,331 INFO L226 Difference]: Without dead ends: 292 [2022-07-22 17:39:09,332 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=35, Invalid=97, Unknown=0, NotChecked=0, Total=132 [2022-07-22 17:39:09,332 INFO L413 NwaCegarLoop]: 79 mSDtfsCounter, 172 mSDsluCounter, 248 mSDsCounter, 0 mSdLazyCounter, 267 mSolverCounterSat, 54 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 172 SdHoareTripleChecker+Valid, 327 SdHoareTripleChecker+Invalid, 321 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 54 IncrementalHoareTripleChecker+Valid, 267 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:09,332 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [172 Valid, 327 Invalid, 321 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [54 Valid, 267 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:09,333 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 292 states. [2022-07-22 17:39:09,340 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 292 to 241. [2022-07-22 17:39:09,340 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 241 states, 190 states have (on average 1.2421052631578948) internal successors, (236), 206 states have internal predecessors, (236), 25 states have call successors, (25), 22 states have call predecessors, (25), 25 states have return successors, (37), 22 states have call predecessors, (37), 25 states have call successors, (37) [2022-07-22 17:39:09,341 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 241 states to 241 states and 298 transitions. [2022-07-22 17:39:09,341 INFO L78 Accepts]: Start accepts. Automaton has 241 states and 298 transitions. Word has length 43 [2022-07-22 17:39:09,341 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:09,341 INFO L495 AbstractCegarLoop]: Abstraction has 241 states and 298 transitions. [2022-07-22 17:39:09,341 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 4.75) internal successors, (38), 6 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-07-22 17:39:09,342 INFO L276 IsEmpty]: Start isEmpty. Operand 241 states and 298 transitions. [2022-07-22 17:39:09,342 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2022-07-22 17:39:09,342 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:09,342 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:09,342 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2022-07-22 17:39:09,342 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:09,343 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:09,343 INFO L85 PathProgramCache]: Analyzing trace with hash -108342764, now seen corresponding path program 1 times [2022-07-22 17:39:09,343 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:09,343 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1286506675] [2022-07-22 17:39:09,343 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:09,343 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:09,359 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,385 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:09,387 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,393 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:09,398 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,403 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:09,403 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:09,403 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1286506675] [2022-07-22 17:39:09,403 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1286506675] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:09,403 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:09,403 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-07-22 17:39:09,404 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1739407508] [2022-07-22 17:39:09,404 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:09,404 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-07-22 17:39:09,404 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:09,404 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-07-22 17:39:09,405 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:09,405 INFO L87 Difference]: Start difference. First operand 241 states and 298 transitions. Second operand has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-07-22 17:39:09,642 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:09,642 INFO L93 Difference]: Finished difference Result 541 states and 707 transitions. [2022-07-22 17:39:09,643 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2022-07-22 17:39:09,643 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 43 [2022-07-22 17:39:09,643 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:09,645 INFO L225 Difference]: With dead ends: 541 [2022-07-22 17:39:09,645 INFO L226 Difference]: Without dead ends: 375 [2022-07-22 17:39:09,646 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 24 GetRequests, 6 SyntacticMatches, 1 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 58 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=106, Invalid=236, Unknown=0, NotChecked=0, Total=342 [2022-07-22 17:39:09,646 INFO L413 NwaCegarLoop]: 127 mSDtfsCounter, 191 mSDsluCounter, 335 mSDsCounter, 0 mSdLazyCounter, 305 mSolverCounterSat, 59 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 193 SdHoareTripleChecker+Valid, 462 SdHoareTripleChecker+Invalid, 364 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 59 IncrementalHoareTripleChecker+Valid, 305 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:09,647 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [193 Valid, 462 Invalid, 364 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [59 Valid, 305 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:09,647 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 375 states. [2022-07-22 17:39:09,659 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 375 to 364. [2022-07-22 17:39:09,660 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 364 states, 287 states have (on average 1.2229965156794425) internal successors, (351), 308 states have internal predecessors, (351), 38 states have call successors, (38), 34 states have call predecessors, (38), 38 states have return successors, (68), 38 states have call predecessors, (68), 38 states have call successors, (68) [2022-07-22 17:39:09,662 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 364 states to 364 states and 457 transitions. [2022-07-22 17:39:09,662 INFO L78 Accepts]: Start accepts. Automaton has 364 states and 457 transitions. Word has length 43 [2022-07-22 17:39:09,662 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:09,662 INFO L495 AbstractCegarLoop]: Abstraction has 364 states and 457 transitions. [2022-07-22 17:39:09,662 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2022-07-22 17:39:09,663 INFO L276 IsEmpty]: Start isEmpty. Operand 364 states and 457 transitions. [2022-07-22 17:39:09,663 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 77 [2022-07-22 17:39:09,663 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:09,664 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:09,664 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2022-07-22 17:39:09,664 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:09,664 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:09,664 INFO L85 PathProgramCache]: Analyzing trace with hash 2046496720, now seen corresponding path program 1 times [2022-07-22 17:39:09,664 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:09,664 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1531929943] [2022-07-22 17:39:09,665 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:09,665 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:09,689 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,717 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:09,718 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,725 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2022-07-22 17:39:09,728 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,736 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-07-22 17:39:09,738 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,742 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 61 [2022-07-22 17:39:09,743 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,744 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-07-22 17:39:09,745 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,746 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 12 proven. 7 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-07-22 17:39:09,746 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:09,746 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1531929943] [2022-07-22 17:39:09,746 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1531929943] provided 0 perfect and 1 imperfect interpolant sequences [2022-07-22 17:39:09,746 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [271421280] [2022-07-22 17:39:09,746 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:09,746 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-07-22 17:39:09,747 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-07-22 17:39:09,748 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-07-22 17:39:09,749 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-07-22 17:39:09,822 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:09,824 INFO L263 TraceCheckSpWp]: Trace formula consists of 420 conjuncts, 8 conjunts are in the unsatisfiable core [2022-07-22 17:39:09,829 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-07-22 17:39:09,959 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 15 proven. 6 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:09,960 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-07-22 17:39:10,062 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 13 proven. 6 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2022-07-22 17:39:10,062 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [271421280] provided 0 perfect and 2 imperfect interpolant sequences [2022-07-22 17:39:10,062 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-07-22 17:39:10,062 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 6, 6] total 9 [2022-07-22 17:39:10,062 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1177220702] [2022-07-22 17:39:10,062 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-07-22 17:39:10,063 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-07-22 17:39:10,063 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:10,063 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-07-22 17:39:10,063 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=18, Invalid=54, Unknown=0, NotChecked=0, Total=72 [2022-07-22 17:39:10,063 INFO L87 Difference]: Start difference. First operand 364 states and 457 transitions. Second operand has 9 states, 9 states have (on average 7.888888888888889) internal successors, (71), 6 states have internal predecessors, (71), 3 states have call successors, (12), 6 states have call predecessors, (12), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-07-22 17:39:10,493 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:10,494 INFO L93 Difference]: Finished difference Result 862 states and 1137 transitions. [2022-07-22 17:39:10,494 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 27 states. [2022-07-22 17:39:10,494 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 7.888888888888889) internal successors, (71), 6 states have internal predecessors, (71), 3 states have call successors, (12), 6 states have call predecessors, (12), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 76 [2022-07-22 17:39:10,495 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:10,498 INFO L225 Difference]: With dead ends: 862 [2022-07-22 17:39:10,498 INFO L226 Difference]: Without dead ends: 573 [2022-07-22 17:39:10,499 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 194 GetRequests, 163 SyntacticMatches, 4 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 200 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=227, Invalid=585, Unknown=0, NotChecked=0, Total=812 [2022-07-22 17:39:10,500 INFO L413 NwaCegarLoop]: 130 mSDtfsCounter, 246 mSDsluCounter, 474 mSDsCounter, 0 mSdLazyCounter, 505 mSolverCounterSat, 87 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 252 SdHoareTripleChecker+Valid, 604 SdHoareTripleChecker+Invalid, 592 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 87 IncrementalHoareTripleChecker+Valid, 505 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:10,500 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [252 Valid, 604 Invalid, 592 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [87 Valid, 505 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-07-22 17:39:10,501 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 573 states. [2022-07-22 17:39:10,538 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 573 to 492. [2022-07-22 17:39:10,539 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 492 states, 384 states have (on average 1.2291666666666667) internal successors, (472), 414 states have internal predecessors, (472), 54 states have call successors, (54), 48 states have call predecessors, (54), 53 states have return successors, (102), 50 states have call predecessors, (102), 54 states have call successors, (102) [2022-07-22 17:39:10,541 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 492 states to 492 states and 628 transitions. [2022-07-22 17:39:10,542 INFO L78 Accepts]: Start accepts. Automaton has 492 states and 628 transitions. Word has length 76 [2022-07-22 17:39:10,543 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:10,543 INFO L495 AbstractCegarLoop]: Abstraction has 492 states and 628 transitions. [2022-07-22 17:39:10,543 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 7.888888888888889) internal successors, (71), 6 states have internal predecessors, (71), 3 states have call successors, (12), 6 states have call predecessors, (12), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2022-07-22 17:39:10,543 INFO L276 IsEmpty]: Start isEmpty. Operand 492 states and 628 transitions. [2022-07-22 17:39:10,545 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2022-07-22 17:39:10,545 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:10,545 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:10,566 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-07-22 17:39:10,759 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2022-07-22 17:39:10,760 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:10,760 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:10,760 INFO L85 PathProgramCache]: Analyzing trace with hash 1016756628, now seen corresponding path program 2 times [2022-07-22 17:39:10,760 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:10,760 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [431956954] [2022-07-22 17:39:10,760 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:10,760 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:10,782 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2022-07-22 17:39:10,782 INFO L352 TraceCheck]: Trace is feasible, we will do another trace check, this time with branch encoders. [2022-07-22 17:39:10,811 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2022-07-22 17:39:10,830 INFO L130 FreeRefinementEngine]: Strategy CAMEL found a feasible trace [2022-07-22 17:39:10,831 INFO L271 BasicCegarLoop]: Counterexample is feasible [2022-07-22 17:39:10,831 INFO L805 garLoopResultBuilder]: Registering result UNSAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-07-22 17:39:10,832 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11 [2022-07-22 17:39:10,834 INFO L356 BasicCegarLoop]: Path program histogram: [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:10,837 INFO L176 ceAbstractionStarter]: Computing trace abstraction results [2022-07-22 17:39:10,908 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 22.07 05:39:10 BoogieIcfgContainer [2022-07-22 17:39:10,909 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-07-22 17:39:10,909 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-07-22 17:39:10,910 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-07-22 17:39:10,910 INFO L275 PluginConnector]: Witness Printer initialized [2022-07-22 17:39:10,910 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.07 05:39:07" (3/4) ... [2022-07-22 17:39:10,911 INFO L131 WitnessPrinter]: Generating witness for reachability counterexample [2022-07-22 17:39:10,987 INFO L141 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2022-07-22 17:39:10,987 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-07-22 17:39:10,988 INFO L158 Benchmark]: Toolchain (without parser) took 4528.04ms. Allocated memory was 100.7MB in the beginning and 121.6MB in the end (delta: 21.0MB). Free memory was 64.8MB in the beginning and 63.6MB in the end (delta: 1.2MB). Peak memory consumption was 23.3MB. Max. memory is 16.1GB. [2022-07-22 17:39:10,988 INFO L158 Benchmark]: CDTParser took 0.17ms. Allocated memory is still 100.7MB. Free memory was 73.7MB in the beginning and 73.6MB in the end (delta: 28.5kB). There was no memory consumed. Max. memory is 16.1GB. [2022-07-22 17:39:10,988 INFO L158 Benchmark]: CACSL2BoogieTranslator took 320.66ms. Allocated memory is still 100.7MB. Free memory was 64.6MB in the beginning and 67.6MB in the end (delta: -3.1MB). Peak memory consumption was 9.7MB. Max. memory is 16.1GB. [2022-07-22 17:39:10,989 INFO L158 Benchmark]: Boogie Procedure Inliner took 42.08ms. Allocated memory is still 100.7MB. Free memory was 67.1MB in the beginning and 65.0MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-07-22 17:39:10,989 INFO L158 Benchmark]: Boogie Preprocessor took 44.06ms. Allocated memory is still 100.7MB. Free memory was 65.0MB in the beginning and 63.4MB in the end (delta: 1.6MB). There was no memory consumed. Max. memory is 16.1GB. [2022-07-22 17:39:10,989 INFO L158 Benchmark]: RCFGBuilder took 476.12ms. Allocated memory is still 100.7MB. Free memory was 63.4MB in the beginning and 46.7MB in the end (delta: 16.7MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2022-07-22 17:39:10,989 INFO L158 Benchmark]: TraceAbstraction took 3561.57ms. Allocated memory was 100.7MB in the beginning and 121.6MB in the end (delta: 21.0MB). Free memory was 46.2MB in the beginning and 71.9MB in the end (delta: -25.8MB). There was no memory consumed. Max. memory is 16.1GB. [2022-07-22 17:39:10,989 INFO L158 Benchmark]: Witness Printer took 78.04ms. Allocated memory is still 121.6MB. Free memory was 71.9MB in the beginning and 63.6MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2022-07-22 17:39:10,991 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.17ms. Allocated memory is still 100.7MB. Free memory was 73.7MB in the beginning and 73.6MB in the end (delta: 28.5kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 320.66ms. Allocated memory is still 100.7MB. Free memory was 64.6MB in the beginning and 67.6MB in the end (delta: -3.1MB). Peak memory consumption was 9.7MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 42.08ms. Allocated memory is still 100.7MB. Free memory was 67.1MB in the beginning and 65.0MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 44.06ms. Allocated memory is still 100.7MB. Free memory was 65.0MB in the beginning and 63.4MB in the end (delta: 1.6MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 476.12ms. Allocated memory is still 100.7MB. Free memory was 63.4MB in the beginning and 46.7MB in the end (delta: 16.7MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * TraceAbstraction took 3561.57ms. Allocated memory was 100.7MB in the beginning and 121.6MB in the end (delta: 21.0MB). Free memory was 46.2MB in the beginning and 71.9MB in the end (delta: -25.8MB). There was no memory consumed. Max. memory is 16.1GB. * Witness Printer took 78.04ms. Allocated memory is still 121.6MB. Free memory was 71.9MB in the beginning and 63.6MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - CounterExampleResult [Line: 339]: a call to reach_error is reachable a call to reach_error is reachable We found a FailurePath: [L133] int pumpRunning = 0; [L134] int systemActive = 1; [L344] int cleanupTimeShifts = 4; [L444] int waterLevel = 1; [L445] int methaneLevelCritical = 0; [L707] static struct __ACC__ERR *head = (struct __ACC__ERR *)0; VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L420] int retValue_acc ; [L421] int tmp ; [L425] FCALL select_helpers() [L426] FCALL select_features() [L427] CALL, EXPR valid_product() [L956] int retValue_acc ; [L959] retValue_acc = 1 [L960] return (retValue_acc); VAL [\result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=1, systemActive=1, waterLevel=1] [L427] RET, EXPR valid_product() [L427] tmp = valid_product() [L429] COND TRUE \read(tmp) [L431] FCALL setup() [L432] CALL runTest() [L411] CALL test() [L57] int splverifierCounter ; [L58] int tmp ; [L59] int tmp___0 ; [L60] int tmp___1 ; [L61] int tmp___2 ; [L64] splverifierCounter = 0 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L66] COND TRUE 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L68] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L74] tmp = __VERIFIER_nondet_int() [L76] COND TRUE \read(tmp) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, tmp=-1, waterLevel=1] [L78] CALL waterRise() VAL [\old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L462] COND TRUE waterLevel < 2 [L463] waterLevel = waterLevel + 1 VAL [\old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L78] RET waterRise() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, tmp=-1, waterLevel=2] [L84] tmp___0 = __VERIFIER_nondet_int() [L86] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, tmp=-1, tmp___0=0, waterLevel=2] [L94] tmp___2 = __VERIFIER_nondet_int() [L96] COND TRUE \read(tmp___2) [L98] CALL startSystem() [L330] systemActive = 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L98] RET startSystem() [L113] CALL timeShift() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L141] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L148] COND TRUE \read(systemActive) [L150] CALL processEnvironment() [L196] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L199] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L214] CALL processEnvironment__wrappee__highWaterSensor() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L170] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L173] COND TRUE ! pumpRunning [L175] CALL, EXPR isHighWaterLevel() [L293] int retValue_acc ; [L294] int tmp ; [L295] int tmp___0 ; [L299] CALL, EXPR isHighWaterSensorDry() [L524] int retValue_acc ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L527] COND FALSE !(waterLevel < 2) [L531] retValue_acc = 0 [L532] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=0, systemActive=1, waterLevel=2] [L299] RET, EXPR isHighWaterSensorDry() [L299] tmp = isHighWaterSensorDry() [L301] COND FALSE !(\read(tmp)) [L304] tmp___0 = 1 VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, tmp=0, tmp___0=1, waterLevel=2] [L306] retValue_acc = tmp___0 [L307] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=1, systemActive=1, tmp=0, tmp___0=1, waterLevel=2] [L175] RET, EXPR isHighWaterLevel() [L175] tmp = isHighWaterLevel() [L177] COND TRUE \read(tmp) [L179] CALL activatePump() [L224] pumpRunning = 1 VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L179] RET activatePump() [L214] RET processEnvironment__wrappee__highWaterSensor() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L150] RET processEnvironment() [L156] CALL __utac_acc__Specification4_spec__1() [L905] int tmp ; [L906] int tmp___0 ; [L910] CALL, EXPR getWaterLevel() [L515] int retValue_acc ; [L518] retValue_acc = waterLevel [L519] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=2, systemActive=1, waterLevel=2] [L910] RET, EXPR getWaterLevel() [L910] tmp = getWaterLevel() [L912] COND FALSE !(tmp == 0) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=2, waterLevel=2] [L156] RET __utac_acc__Specification4_spec__1() [L113] RET timeShift() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=-1, tmp___0=0, tmp___2=1, waterLevel=2] [L66] COND TRUE 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=-1, tmp___0=0, tmp___2=1, waterLevel=2] [L68] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=-1, tmp___0=0, tmp___2=1, waterLevel=2] [L74] tmp = __VERIFIER_nondet_int() [L76] COND FALSE !(\read(tmp)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=2] [L84] tmp___0 = __VERIFIER_nondet_int() [L86] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=2] [L94] tmp___2 = __VERIFIER_nondet_int() [L96] COND TRUE \read(tmp___2) [L98] CALL startSystem() [L330] systemActive = 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L98] RET startSystem() [L113] CALL timeShift() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L141] COND TRUE \read(pumpRunning) [L143] CALL lowerWaterLevel() [L450] COND TRUE waterLevel > 0 [L451] waterLevel = waterLevel - 1 VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L143] RET lowerWaterLevel() [L148] COND TRUE \read(systemActive) [L150] CALL processEnvironment() [L196] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L199] COND TRUE \read(pumpRunning) [L201] CALL, EXPR isMethaneAlarm() [L237] int retValue_acc ; [L241] CALL, EXPR isMethaneLevelCritical() [L483] int retValue_acc ; [L486] retValue_acc = methaneLevelCritical [L487] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=1] [L241] RET, EXPR isMethaneLevelCritical() [L241] retValue_acc = isMethaneLevelCritical() [L243] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=1] [L201] RET, EXPR isMethaneAlarm() [L201] tmp = isMethaneAlarm() [L203] COND FALSE !(\read(tmp)) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=1] [L209] CALL processEnvironment__wrappee__highWaterSensor() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L170] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L173] COND FALSE !(! pumpRunning) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L188] FCALL processEnvironment__wrappee__base() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L209] RET processEnvironment__wrappee__highWaterSensor() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=1] [L150] RET processEnvironment() [L156] CALL __utac_acc__Specification4_spec__1() [L905] int tmp ; [L906] int tmp___0 ; [L910] CALL, EXPR getWaterLevel() [L515] int retValue_acc ; [L518] retValue_acc = waterLevel [L519] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=2, \result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=1, systemActive=1, waterLevel=1] [L910] RET, EXPR getWaterLevel() [L910] tmp = getWaterLevel() [L912] COND FALSE !(tmp == 0) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=1, waterLevel=1] [L156] RET __utac_acc__Specification4_spec__1() [L113] RET timeShift() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L66] COND TRUE 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L68] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L74] tmp = __VERIFIER_nondet_int() [L76] COND FALSE !(\read(tmp)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L84] tmp___0 = __VERIFIER_nondet_int() [L86] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L94] tmp___2 = __VERIFIER_nondet_int() [L96] COND TRUE \read(tmp___2) [L98] CALL startSystem() [L330] systemActive = 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L98] RET startSystem() [L113] CALL timeShift() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L141] COND TRUE \read(pumpRunning) [L143] CALL lowerWaterLevel() [L450] COND TRUE waterLevel > 0 [L451] waterLevel = waterLevel - 1 VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L143] RET lowerWaterLevel() [L148] COND TRUE \read(systemActive) [L150] CALL processEnvironment() [L196] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L199] COND TRUE \read(pumpRunning) [L201] CALL, EXPR isMethaneAlarm() [L237] int retValue_acc ; [L241] CALL, EXPR isMethaneLevelCritical() [L483] int retValue_acc ; [L486] retValue_acc = methaneLevelCritical [L487] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=0] [L241] RET, EXPR isMethaneLevelCritical() [L241] retValue_acc = isMethaneLevelCritical() [L243] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=0] [L201] RET, EXPR isMethaneAlarm() [L201] tmp = isMethaneAlarm() [L203] COND FALSE !(\read(tmp)) VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=0] [L209] CALL processEnvironment__wrappee__highWaterSensor() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L170] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L173] COND FALSE !(! pumpRunning) VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L188] FCALL processEnvironment__wrappee__base() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L209] RET processEnvironment__wrappee__highWaterSensor() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=0] [L150] RET processEnvironment() [L156] CALL __utac_acc__Specification4_spec__1() [L905] int tmp ; [L906] int tmp___0 ; [L910] CALL, EXPR getWaterLevel() [L515] int retValue_acc ; [L518] retValue_acc = waterLevel [L519] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=0] [L910] RET, EXPR getWaterLevel() [L910] tmp = getWaterLevel() [L912] COND TRUE tmp == 0 [L914] CALL, EXPR isPumpRunning() [L248] int retValue_acc ; [L251] retValue_acc = pumpRunning [L252] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=1, systemActive=1, waterLevel=0] [L914] RET, EXPR isPumpRunning() [L914] tmp___0 = isPumpRunning() [L916] COND TRUE \read(tmp___0) [L918] CALL __automaton_fail() [L339] reach_error() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 88 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 3.4s, OverallIterations: 12, TraceHistogramMax: 3, PathProgramHistogramMax: 2, EmptinessCheckTime: 0.0s, AutomataDifference: 1.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1301 SdHoareTripleChecker+Valid, 1.0s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1282 mSDsluCounter, 3429 SdHoareTripleChecker+Invalid, 0.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2310 mSDsCounter, 342 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1643 IncrementalHoareTripleChecker+Invalid, 1985 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 342 mSolverCounterUnsat, 1119 mSDtfsCounter, 1643 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 304 GetRequests, 206 SyntacticMatches, 5 SemanticMatches, 93 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 280 ImplicationChecksByTransitivity, 0.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=492occurred in iteration=11, InterpolantAutomatonStates: 100, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.2s AutomataMinimizationTime, 11 MinimizatonAttempts, 225 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 0.7s InterpolantComputationTime, 590 NumberOfCodeBlocks, 590 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 544 ConstructedInterpolants, 0 QuantifiedInterpolants, 1026 SizeOfPredicates, 4 NumberOfNonLiveVariables, 420 ConjunctsInSsa, 8 ConjunctsInUnsatCore, 13 InterpolantComputations, 10 PerfectInterpolantSequences, 44/63 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available RESULT: Ultimate proved your program to be incorrect! [2022-07-22 17:39:11,015 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Writing human readable error path to file UltimateCounterExample.errorpath Result: FALSE