./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec4_product46.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 791161d1 Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec4_product46.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness.graphml --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash b28893eeb4e8958df7bf6ff738f75538c209345459f7fc3e6dda93763604868d --- Real Ultimate output --- This is Ultimate 0.2.2-?-791161d [2022-07-22 17:39:09,705 INFO L177 SettingsManager]: Resetting all preferences to default values... [2022-07-22 17:39:09,707 INFO L181 SettingsManager]: Resetting UltimateCore preferences to default values [2022-07-22 17:39:09,751 INFO L184 SettingsManager]: Ultimate Commandline Interface provides no preferences, ignoring... [2022-07-22 17:39:09,752 INFO L181 SettingsManager]: Resetting Boogie Preprocessor preferences to default values [2022-07-22 17:39:09,754 INFO L181 SettingsManager]: Resetting Boogie Procedure Inliner preferences to default values [2022-07-22 17:39:09,756 INFO L181 SettingsManager]: Resetting Abstract Interpretation preferences to default values [2022-07-22 17:39:09,760 INFO L181 SettingsManager]: Resetting LassoRanker preferences to default values [2022-07-22 17:39:09,762 INFO L181 SettingsManager]: Resetting Reaching Definitions preferences to default values [2022-07-22 17:39:09,767 INFO L181 SettingsManager]: Resetting SyntaxChecker preferences to default values [2022-07-22 17:39:09,768 INFO L181 SettingsManager]: Resetting Sifa preferences to default values [2022-07-22 17:39:09,770 INFO L184 SettingsManager]: Büchi Program Product provides no preferences, ignoring... [2022-07-22 17:39:09,770 INFO L181 SettingsManager]: Resetting LTL2Aut preferences to default values [2022-07-22 17:39:09,772 INFO L181 SettingsManager]: Resetting PEA to Boogie preferences to default values [2022-07-22 17:39:09,774 INFO L181 SettingsManager]: Resetting BlockEncodingV2 preferences to default values [2022-07-22 17:39:09,777 INFO L181 SettingsManager]: Resetting ChcToBoogie preferences to default values [2022-07-22 17:39:09,778 INFO L181 SettingsManager]: Resetting AutomataScriptInterpreter preferences to default values [2022-07-22 17:39:09,779 INFO L181 SettingsManager]: Resetting BuchiAutomizer preferences to default values [2022-07-22 17:39:09,781 INFO L181 SettingsManager]: Resetting CACSL2BoogieTranslator preferences to default values [2022-07-22 17:39:09,786 INFO L181 SettingsManager]: Resetting CodeCheck preferences to default values [2022-07-22 17:39:09,788 INFO L181 SettingsManager]: Resetting HornVerifier preferences to default values [2022-07-22 17:39:09,789 INFO L181 SettingsManager]: Resetting InvariantSynthesis preferences to default values [2022-07-22 17:39:09,790 INFO L181 SettingsManager]: Resetting RCFGBuilder preferences to default values [2022-07-22 17:39:09,791 INFO L181 SettingsManager]: Resetting Referee preferences to default values [2022-07-22 17:39:09,792 INFO L181 SettingsManager]: Resetting TraceAbstraction preferences to default values [2022-07-22 17:39:09,795 INFO L184 SettingsManager]: TraceAbstractionConcurrent provides no preferences, ignoring... [2022-07-22 17:39:09,800 INFO L184 SettingsManager]: TraceAbstractionWithAFAs provides no preferences, ignoring... [2022-07-22 17:39:09,801 INFO L181 SettingsManager]: Resetting TreeAutomizer preferences to default values [2022-07-22 17:39:09,802 INFO L181 SettingsManager]: Resetting IcfgToChc preferences to default values [2022-07-22 17:39:09,803 INFO L181 SettingsManager]: Resetting IcfgTransformer preferences to default values [2022-07-22 17:39:09,804 INFO L184 SettingsManager]: ReqToTest provides no preferences, ignoring... [2022-07-22 17:39:09,804 INFO L181 SettingsManager]: Resetting Boogie Printer preferences to default values [2022-07-22 17:39:09,806 INFO L181 SettingsManager]: Resetting ChcSmtPrinter preferences to default values [2022-07-22 17:39:09,806 INFO L181 SettingsManager]: Resetting ReqPrinter preferences to default values [2022-07-22 17:39:09,807 INFO L181 SettingsManager]: Resetting Witness Printer preferences to default values [2022-07-22 17:39:09,808 INFO L184 SettingsManager]: Boogie PL CUP Parser provides no preferences, ignoring... [2022-07-22 17:39:09,808 INFO L181 SettingsManager]: Resetting CDTParser preferences to default values [2022-07-22 17:39:09,809 INFO L184 SettingsManager]: AutomataScriptParser provides no preferences, ignoring... [2022-07-22 17:39:09,809 INFO L184 SettingsManager]: ReqParser provides no preferences, ignoring... [2022-07-22 17:39:09,809 INFO L181 SettingsManager]: Resetting SmtParser preferences to default values [2022-07-22 17:39:09,810 INFO L181 SettingsManager]: Resetting Witness Parser preferences to default values [2022-07-22 17:39:09,812 INFO L188 SettingsManager]: Finished resetting all preferences to default values... [2022-07-22 17:39:09,812 INFO L101 SettingsManager]: Beginning loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2022-07-22 17:39:09,843 INFO L113 SettingsManager]: Loading preferences was successful [2022-07-22 17:39:09,845 INFO L115 SettingsManager]: Preferences different from defaults after loading the file: [2022-07-22 17:39:09,845 INFO L136 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2022-07-22 17:39:09,846 INFO L138 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2022-07-22 17:39:09,846 INFO L136 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2022-07-22 17:39:09,846 INFO L138 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2022-07-22 17:39:09,847 INFO L136 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2022-07-22 17:39:09,847 INFO L138 SettingsManager]: * Create parallel compositions if possible=false [2022-07-22 17:39:09,847 INFO L138 SettingsManager]: * Use SBE=true [2022-07-22 17:39:09,848 INFO L136 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2022-07-22 17:39:09,849 INFO L138 SettingsManager]: * sizeof long=4 [2022-07-22 17:39:09,849 INFO L138 SettingsManager]: * Overapproximate operations on floating types=true [2022-07-22 17:39:09,849 INFO L138 SettingsManager]: * sizeof POINTER=4 [2022-07-22 17:39:09,849 INFO L138 SettingsManager]: * Check division by zero=IGNORE [2022-07-22 17:39:09,849 INFO L138 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2022-07-22 17:39:09,850 INFO L138 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2022-07-22 17:39:09,850 INFO L138 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2022-07-22 17:39:09,850 INFO L138 SettingsManager]: * sizeof long double=12 [2022-07-22 17:39:09,850 INFO L138 SettingsManager]: * Check if freed pointer was valid=false [2022-07-22 17:39:09,851 INFO L138 SettingsManager]: * Use constant arrays=true [2022-07-22 17:39:09,851 INFO L138 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2022-07-22 17:39:09,852 INFO L136 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2022-07-22 17:39:09,852 INFO L138 SettingsManager]: * Size of a code block=SequenceOfStatements [2022-07-22 17:39:09,852 INFO L138 SettingsManager]: * SMT solver=External_DefaultMode [2022-07-22 17:39:09,853 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-07-22 17:39:09,853 INFO L136 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2022-07-22 17:39:09,853 INFO L138 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2022-07-22 17:39:09,853 INFO L138 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopsAndPotentialCycles [2022-07-22 17:39:09,853 INFO L138 SettingsManager]: * Trace refinement strategy=CAMEL [2022-07-22 17:39:09,854 INFO L138 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2022-07-22 17:39:09,854 INFO L138 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2022-07-22 17:39:09,854 INFO L138 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2022-07-22 17:39:09,854 INFO L138 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2022-07-22 17:39:09,854 INFO L138 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness.graphml Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> b28893eeb4e8958df7bf6ff738f75538c209345459f7fc3e6dda93763604868d [2022-07-22 17:39:10,105 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2022-07-22 17:39:10,129 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2022-07-22 17:39:10,132 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2022-07-22 17:39:10,133 INFO L271 PluginConnector]: Initializing CDTParser... [2022-07-22 17:39:10,134 INFO L275 PluginConnector]: CDTParser initialized [2022-07-22 17:39:10,135 INFO L432 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec4_product46.cil.c [2022-07-22 17:39:10,202 INFO L220 CDTParser]: Created temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/72c0ff0e6/00c66de9d3294269a4550ea67de6244f/FLAGc265f59f5 [2022-07-22 17:39:10,671 INFO L306 CDTParser]: Found 1 translation units. [2022-07-22 17:39:10,672 INFO L160 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product46.cil.c [2022-07-22 17:39:10,682 INFO L349 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/72c0ff0e6/00c66de9d3294269a4550ea67de6244f/FLAGc265f59f5 [2022-07-22 17:39:10,696 INFO L357 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/72c0ff0e6/00c66de9d3294269a4550ea67de6244f [2022-07-22 17:39:10,698 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2022-07-22 17:39:10,700 INFO L131 ToolchainWalker]: Walking toolchain with 6 elements. [2022-07-22 17:39:10,701 INFO L113 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2022-07-22 17:39:10,701 INFO L271 PluginConnector]: Initializing CACSL2BoogieTranslator... [2022-07-22 17:39:10,704 INFO L275 PluginConnector]: CACSL2BoogieTranslator initialized [2022-07-22 17:39:10,705 INFO L185 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.07 05:39:10" (1/1) ... [2022-07-22 17:39:10,706 INFO L205 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2a1ba57c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:10, skipping insertion in model container [2022-07-22 17:39:10,706 INFO L185 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.07 05:39:10" (1/1) ... [2022-07-22 17:39:10,712 INFO L145 MainTranslator]: Starting translation in SV-COMP mode [2022-07-22 17:39:10,763 INFO L178 MainTranslator]: Built tables and reachable declarations [2022-07-22 17:39:11,043 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product46.cil.c[13010,13023] [2022-07-22 17:39:11,084 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-07-22 17:39:11,102 INFO L203 MainTranslator]: Completed pre-run [2022-07-22 17:39:11,159 WARN L230 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec4_product46.cil.c[13010,13023] [2022-07-22 17:39:11,175 INFO L210 PostProcessor]: Analyzing one entry point: main [2022-07-22 17:39:11,190 INFO L208 MainTranslator]: Completed translation [2022-07-22 17:39:11,191 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11 WrapperNode [2022-07-22 17:39:11,191 INFO L132 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2022-07-22 17:39:11,192 INFO L113 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2022-07-22 17:39:11,193 INFO L271 PluginConnector]: Initializing Boogie Procedure Inliner... [2022-07-22 17:39:11,193 INFO L275 PluginConnector]: Boogie Procedure Inliner initialized [2022-07-22 17:39:11,202 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,224 INFO L185 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,268 INFO L137 Inliner]: procedures = 55, calls = 156, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 262 [2022-07-22 17:39:11,269 INFO L132 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2022-07-22 17:39:11,270 INFO L113 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2022-07-22 17:39:11,270 INFO L271 PluginConnector]: Initializing Boogie Preprocessor... [2022-07-22 17:39:11,270 INFO L275 PluginConnector]: Boogie Preprocessor initialized [2022-07-22 17:39:11,278 INFO L185 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,278 INFO L185 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,290 INFO L185 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,297 INFO L185 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,302 INFO L185 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,319 INFO L185 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,322 INFO L185 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,328 INFO L132 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2022-07-22 17:39:11,330 INFO L113 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2022-07-22 17:39:11,331 INFO L271 PluginConnector]: Initializing RCFGBuilder... [2022-07-22 17:39:11,331 INFO L275 PluginConnector]: RCFGBuilder initialized [2022-07-22 17:39:11,332 INFO L185 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (1/1) ... [2022-07-22 17:39:11,338 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2022-07-22 17:39:11,349 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-07-22 17:39:11,365 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2022-07-22 17:39:11,383 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2022-07-22 17:39:11,410 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2022-07-22 17:39:11,411 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2022-07-22 17:39:11,411 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2022-07-22 17:39:11,411 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2022-07-22 17:39:11,411 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2022-07-22 17:39:11,412 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2022-07-22 17:39:11,412 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2022-07-22 17:39:11,412 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2022-07-22 17:39:11,412 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2022-07-22 17:39:11,412 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2022-07-22 17:39:11,412 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2022-07-22 17:39:11,413 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2022-07-22 17:39:11,413 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2022-07-22 17:39:11,413 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2022-07-22 17:39:11,413 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2022-07-22 17:39:11,413 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2022-07-22 17:39:11,414 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2022-07-22 17:39:11,414 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2022-07-22 17:39:11,497 INFO L234 CfgBuilder]: Building ICFG [2022-07-22 17:39:11,498 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2022-07-22 17:39:11,802 INFO L275 CfgBuilder]: Performing block encoding [2022-07-22 17:39:11,808 INFO L294 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2022-07-22 17:39:11,809 INFO L299 CfgBuilder]: Removed 2 assume(true) statements. [2022-07-22 17:39:11,810 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.07 05:39:11 BoogieIcfgContainer [2022-07-22 17:39:11,811 INFO L132 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2022-07-22 17:39:11,812 INFO L113 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2022-07-22 17:39:11,812 INFO L271 PluginConnector]: Initializing TraceAbstraction... [2022-07-22 17:39:11,816 INFO L275 PluginConnector]: TraceAbstraction initialized [2022-07-22 17:39:11,821 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 22.07 05:39:10" (1/3) ... [2022-07-22 17:39:11,822 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@23b69060 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.07 05:39:11, skipping insertion in model container [2022-07-22 17:39:11,822 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.07 05:39:11" (2/3) ... [2022-07-22 17:39:11,822 INFO L205 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@23b69060 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.07 05:39:11, skipping insertion in model container [2022-07-22 17:39:11,823 INFO L185 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.07 05:39:11" (3/3) ... [2022-07-22 17:39:11,824 INFO L111 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product46.cil.c [2022-07-22 17:39:11,837 INFO L201 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2022-07-22 17:39:11,837 INFO L160 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2022-07-22 17:39:11,893 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2022-07-22 17:39:11,900 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopsAndPotentialCycles, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=de.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings@5dc86a00, mLbeIndependenceSettings=de.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings@7fce36b [2022-07-22 17:39:11,900 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2022-07-22 17:39:11,908 INFO L276 IsEmpty]: Start isEmpty. Operand has 89 states, 68 states have (on average 1.3823529411764706) internal successors, (94), 76 states have internal predecessors, (94), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2022-07-22 17:39:11,915 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 20 [2022-07-22 17:39:11,915 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:11,915 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:11,916 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:11,919 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:11,919 INFO L85 PathProgramCache]: Analyzing trace with hash 584169344, now seen corresponding path program 1 times [2022-07-22 17:39:11,925 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:11,925 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [213956294] [2022-07-22 17:39:11,925 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:11,926 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:12,019 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,085 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:12,086 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:12,086 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [213956294] [2022-07-22 17:39:12,087 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [213956294] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:12,087 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:12,087 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2022-07-22 17:39:12,089 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1803488272] [2022-07-22 17:39:12,090 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:12,093 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2022-07-22 17:39:12,093 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:12,117 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2022-07-22 17:39:12,118 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-07-22 17:39:12,120 INFO L87 Difference]: Start difference. First operand has 89 states, 68 states have (on average 1.3823529411764706) internal successors, (94), 76 states have internal predecessors, (94), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:12,150 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:12,150 INFO L93 Difference]: Finished difference Result 170 states and 231 transitions. [2022-07-22 17:39:12,153 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2022-07-22 17:39:12,154 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 19 [2022-07-22 17:39:12,155 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:12,170 INFO L225 Difference]: With dead ends: 170 [2022-07-22 17:39:12,171 INFO L226 Difference]: Without dead ends: 80 [2022-07-22 17:39:12,174 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2022-07-22 17:39:12,177 INFO L413 NwaCegarLoop]: 112 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 112 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:12,178 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 112 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:12,192 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 80 states. [2022-07-22 17:39:12,222 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 80 to 80. [2022-07-22 17:39:12,224 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 80 states, 61 states have (on average 1.3114754098360655) internal successors, (80), 68 states have internal predecessors, (80), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2022-07-22 17:39:12,226 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 80 states to 80 states and 103 transitions. [2022-07-22 17:39:12,227 INFO L78 Accepts]: Start accepts. Automaton has 80 states and 103 transitions. Word has length 19 [2022-07-22 17:39:12,228 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:12,228 INFO L495 AbstractCegarLoop]: Abstraction has 80 states and 103 transitions. [2022-07-22 17:39:12,229 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 8.5) internal successors, (17), 2 states have internal predecessors, (17), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:12,229 INFO L276 IsEmpty]: Start isEmpty. Operand 80 states and 103 transitions. [2022-07-22 17:39:12,230 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 21 [2022-07-22 17:39:12,230 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:12,231 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:12,231 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2022-07-22 17:39:12,232 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:12,232 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:12,232 INFO L85 PathProgramCache]: Analyzing trace with hash -1835019573, now seen corresponding path program 1 times [2022-07-22 17:39:12,233 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:12,233 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [478912001] [2022-07-22 17:39:12,233 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:12,233 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:12,281 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,342 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:12,343 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:12,343 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [478912001] [2022-07-22 17:39:12,344 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [478912001] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:12,344 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:12,344 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2022-07-22 17:39:12,345 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [888919638] [2022-07-22 17:39:12,345 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:12,346 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2022-07-22 17:39:12,346 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:12,348 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2022-07-22 17:39:12,349 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-07-22 17:39:12,349 INFO L87 Difference]: Start difference. First operand 80 states and 103 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:12,370 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:12,376 INFO L93 Difference]: Finished difference Result 125 states and 161 transitions. [2022-07-22 17:39:12,377 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2022-07-22 17:39:12,378 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 20 [2022-07-22 17:39:12,378 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:12,381 INFO L225 Difference]: With dead ends: 125 [2022-07-22 17:39:12,382 INFO L226 Difference]: Without dead ends: 71 [2022-07-22 17:39:12,383 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2022-07-22 17:39:12,386 INFO L413 NwaCegarLoop]: 90 mSDtfsCounter, 13 mSDsluCounter, 73 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 163 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:12,387 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 163 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:12,388 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 71 states. [2022-07-22 17:39:12,395 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 71 to 71. [2022-07-22 17:39:12,398 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 71 states, 55 states have (on average 1.3272727272727274) internal successors, (73), 62 states have internal predecessors, (73), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-07-22 17:39:12,403 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 71 states to 71 states and 91 transitions. [2022-07-22 17:39:12,405 INFO L78 Accepts]: Start accepts. Automaton has 71 states and 91 transitions. Word has length 20 [2022-07-22 17:39:12,405 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:12,406 INFO L495 AbstractCegarLoop]: Abstraction has 71 states and 91 transitions. [2022-07-22 17:39:12,406 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:12,406 INFO L276 IsEmpty]: Start isEmpty. Operand 71 states and 91 transitions. [2022-07-22 17:39:12,406 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2022-07-22 17:39:12,407 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:12,407 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:12,407 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2022-07-22 17:39:12,407 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:12,408 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:12,408 INFO L85 PathProgramCache]: Analyzing trace with hash -1513934599, now seen corresponding path program 1 times [2022-07-22 17:39:12,408 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:12,408 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [712313569] [2022-07-22 17:39:12,408 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:12,409 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:12,431 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,472 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:12,473 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:12,473 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [712313569] [2022-07-22 17:39:12,473 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [712313569] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:12,474 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:12,474 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-07-22 17:39:12,474 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [749767906] [2022-07-22 17:39:12,474 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:12,475 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-07-22 17:39:12,475 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:12,475 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-07-22 17:39:12,476 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-07-22 17:39:12,476 INFO L87 Difference]: Start difference. First operand 71 states and 91 transitions. Second operand has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:12,528 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:12,529 INFO L93 Difference]: Finished difference Result 135 states and 176 transitions. [2022-07-22 17:39:12,529 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2022-07-22 17:39:12,529 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 25 [2022-07-22 17:39:12,530 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:12,530 INFO L225 Difference]: With dead ends: 135 [2022-07-22 17:39:12,531 INFO L226 Difference]: Without dead ends: 71 [2022-07-22 17:39:12,531 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=17, Invalid=25, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:12,532 INFO L413 NwaCegarLoop]: 84 mSDtfsCounter, 116 mSDsluCounter, 136 mSDsCounter, 0 mSdLazyCounter, 9 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 116 SdHoareTripleChecker+Valid, 220 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 9 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:12,533 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [116 Valid, 220 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 9 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2022-07-22 17:39:12,534 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 71 states. [2022-07-22 17:39:12,540 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 71 to 71. [2022-07-22 17:39:12,547 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 71 states, 55 states have (on average 1.309090909090909) internal successors, (72), 62 states have internal predecessors, (72), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2022-07-22 17:39:12,548 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 71 states to 71 states and 90 transitions. [2022-07-22 17:39:12,549 INFO L78 Accepts]: Start accepts. Automaton has 71 states and 90 transitions. Word has length 25 [2022-07-22 17:39:12,549 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:12,549 INFO L495 AbstractCegarLoop]: Abstraction has 71 states and 90 transitions. [2022-07-22 17:39:12,549 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2022-07-22 17:39:12,549 INFO L276 IsEmpty]: Start isEmpty. Operand 71 states and 90 transitions. [2022-07-22 17:39:12,551 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2022-07-22 17:39:12,551 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:12,551 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:12,551 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2022-07-22 17:39:12,551 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:12,552 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:12,552 INFO L85 PathProgramCache]: Analyzing trace with hash -1198945482, now seen corresponding path program 1 times [2022-07-22 17:39:12,552 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:12,553 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1005681046] [2022-07-22 17:39:12,553 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:12,553 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:12,575 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,620 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2022-07-22 17:39:12,623 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,632 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-07-22 17:39:12,634 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,636 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:12,636 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:12,636 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1005681046] [2022-07-22 17:39:12,637 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1005681046] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:12,637 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:12,637 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2022-07-22 17:39:12,637 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [574840982] [2022-07-22 17:39:12,637 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:12,638 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2022-07-22 17:39:12,638 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:12,639 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2022-07-22 17:39:12,639 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2022-07-22 17:39:12,639 INFO L87 Difference]: Start difference. First operand 71 states and 90 transitions. Second operand has 5 states, 5 states have (on average 6.0) internal successors, (30), 5 states have internal predecessors, (30), 2 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-07-22 17:39:12,805 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:12,805 INFO L93 Difference]: Finished difference Result 203 states and 256 transitions. [2022-07-22 17:39:12,805 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2022-07-22 17:39:12,805 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.0) internal successors, (30), 5 states have internal predecessors, (30), 2 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 35 [2022-07-22 17:39:12,806 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:12,807 INFO L225 Difference]: With dead ends: 203 [2022-07-22 17:39:12,807 INFO L226 Difference]: Without dead ends: 139 [2022-07-22 17:39:12,808 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 13 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2022-07-22 17:39:12,809 INFO L413 NwaCegarLoop]: 106 mSDtfsCounter, 161 mSDsluCounter, 145 mSDsCounter, 0 mSdLazyCounter, 85 mSolverCounterSat, 39 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 163 SdHoareTripleChecker+Valid, 251 SdHoareTripleChecker+Invalid, 124 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 85 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:12,809 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [163 Valid, 251 Invalid, 124 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [39 Valid, 85 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:12,810 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 139 states. [2022-07-22 17:39:12,825 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 139 to 133. [2022-07-22 17:39:12,825 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 133 states, 105 states have (on average 1.2571428571428571) internal successors, (132), 113 states have internal predecessors, (132), 12 states have call successors, (12), 12 states have call predecessors, (12), 15 states have return successors, (17), 13 states have call predecessors, (17), 12 states have call successors, (17) [2022-07-22 17:39:12,827 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 133 states to 133 states and 161 transitions. [2022-07-22 17:39:12,827 INFO L78 Accepts]: Start accepts. Automaton has 133 states and 161 transitions. Word has length 35 [2022-07-22 17:39:12,827 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:12,828 INFO L495 AbstractCegarLoop]: Abstraction has 133 states and 161 transitions. [2022-07-22 17:39:12,828 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.0) internal successors, (30), 5 states have internal predecessors, (30), 2 states have call successors, (3), 3 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-07-22 17:39:12,828 INFO L276 IsEmpty]: Start isEmpty. Operand 133 states and 161 transitions. [2022-07-22 17:39:12,829 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2022-07-22 17:39:12,829 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:12,829 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:12,830 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2022-07-22 17:39:12,830 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:12,830 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:12,830 INFO L85 PathProgramCache]: Analyzing trace with hash 1491563694, now seen corresponding path program 1 times [2022-07-22 17:39:12,831 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:12,831 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1599508630] [2022-07-22 17:39:12,831 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:12,831 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:12,862 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,932 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2022-07-22 17:39:12,937 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,951 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2022-07-22 17:39:12,954 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:12,956 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:12,957 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:12,957 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1599508630] [2022-07-22 17:39:12,957 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1599508630] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:12,958 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:12,958 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2022-07-22 17:39:12,958 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1246650922] [2022-07-22 17:39:12,960 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:12,960 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2022-07-22 17:39:12,961 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:12,962 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2022-07-22 17:39:12,962 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2022-07-22 17:39:12,963 INFO L87 Difference]: Start difference. First operand 133 states and 161 transitions. Second operand has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-07-22 17:39:13,179 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:13,179 INFO L93 Difference]: Finished difference Result 340 states and 431 transitions. [2022-07-22 17:39:13,180 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-07-22 17:39:13,180 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 41 [2022-07-22 17:39:13,180 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:13,192 INFO L225 Difference]: With dead ends: 340 [2022-07-22 17:39:13,192 INFO L226 Difference]: Without dead ends: 214 [2022-07-22 17:39:13,195 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 7 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=40, Invalid=70, Unknown=0, NotChecked=0, Total=110 [2022-07-22 17:39:13,200 INFO L413 NwaCegarLoop]: 74 mSDtfsCounter, 135 mSDsluCounter, 209 mSDsCounter, 0 mSdLazyCounter, 137 mSolverCounterSat, 31 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 283 SdHoareTripleChecker+Invalid, 168 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 137 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:13,204 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 283 Invalid, 168 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 137 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:13,206 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 214 states. [2022-07-22 17:39:13,225 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 214 to 212. [2022-07-22 17:39:13,226 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 212 states, 167 states have (on average 1.2455089820359282) internal successors, (208), 178 states have internal predecessors, (208), 21 states have call successors, (21), 21 states have call predecessors, (21), 23 states have return successors, (31), 21 states have call predecessors, (31), 21 states have call successors, (31) [2022-07-22 17:39:13,228 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 212 states to 212 states and 260 transitions. [2022-07-22 17:39:13,228 INFO L78 Accepts]: Start accepts. Automaton has 212 states and 260 transitions. Word has length 41 [2022-07-22 17:39:13,228 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:13,229 INFO L495 AbstractCegarLoop]: Abstraction has 212 states and 260 transitions. [2022-07-22 17:39:13,229 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 3 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2022-07-22 17:39:13,229 INFO L276 IsEmpty]: Start isEmpty. Operand 212 states and 260 transitions. [2022-07-22 17:39:13,230 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2022-07-22 17:39:13,230 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:13,231 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:13,231 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2022-07-22 17:39:13,231 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:13,232 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:13,232 INFO L85 PathProgramCache]: Analyzing trace with hash -155876344, now seen corresponding path program 1 times [2022-07-22 17:39:13,232 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:13,232 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1301897232] [2022-07-22 17:39:13,232 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:13,232 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:13,255 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,315 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:13,325 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,334 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:13,339 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,354 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2022-07-22 17:39:13,356 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,363 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:13,363 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:13,364 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1301897232] [2022-07-22 17:39:13,364 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1301897232] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:13,364 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:13,364 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-07-22 17:39:13,364 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1836291734] [2022-07-22 17:39:13,364 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:13,364 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-07-22 17:39:13,364 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:13,365 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-07-22 17:39:13,365 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:13,365 INFO L87 Difference]: Start difference. First operand 212 states and 260 transitions. Second operand has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (4), 4 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2022-07-22 17:39:13,696 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:13,696 INFO L93 Difference]: Finished difference Result 266 states and 322 transitions. [2022-07-22 17:39:13,696 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2022-07-22 17:39:13,697 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (4), 4 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) Word has length 45 [2022-07-22 17:39:13,698 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:13,701 INFO L225 Difference]: With dead ends: 266 [2022-07-22 17:39:13,701 INFO L226 Difference]: Without dead ends: 264 [2022-07-22 17:39:13,702 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 28 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 70 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=106, Invalid=274, Unknown=0, NotChecked=0, Total=380 [2022-07-22 17:39:13,704 INFO L413 NwaCegarLoop]: 92 mSDtfsCounter, 194 mSDsluCounter, 285 mSDsCounter, 0 mSdLazyCounter, 263 mSolverCounterSat, 49 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 196 SdHoareTripleChecker+Valid, 377 SdHoareTripleChecker+Invalid, 312 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 49 IncrementalHoareTripleChecker+Valid, 263 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:13,706 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [196 Valid, 377 Invalid, 312 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [49 Valid, 263 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-07-22 17:39:13,708 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 264 states. [2022-07-22 17:39:13,737 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 264 to 242. [2022-07-22 17:39:13,737 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 242 states, 191 states have (on average 1.225130890052356) internal successors, (234), 206 states have internal predecessors, (234), 23 states have call successors, (23), 21 states have call predecessors, (23), 27 states have return successors, (37), 23 states have call predecessors, (37), 23 states have call successors, (37) [2022-07-22 17:39:13,739 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 242 states to 242 states and 294 transitions. [2022-07-22 17:39:13,739 INFO L78 Accepts]: Start accepts. Automaton has 242 states and 294 transitions. Word has length 45 [2022-07-22 17:39:13,740 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:13,740 INFO L495 AbstractCegarLoop]: Abstraction has 242 states and 294 transitions. [2022-07-22 17:39:13,740 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 5.428571428571429) internal successors, (38), 5 states have internal predecessors, (38), 1 states have call successors, (4), 4 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 1 states have call successors, (3) [2022-07-22 17:39:13,740 INFO L276 IsEmpty]: Start isEmpty. Operand 242 states and 294 transitions. [2022-07-22 17:39:13,742 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2022-07-22 17:39:13,742 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:13,742 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:13,743 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2022-07-22 17:39:13,743 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:13,743 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:13,743 INFO L85 PathProgramCache]: Analyzing trace with hash 529558201, now seen corresponding path program 1 times [2022-07-22 17:39:13,743 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:13,744 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [616298234] [2022-07-22 17:39:13,744 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:13,744 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:13,757 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,781 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:13,783 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,795 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:13,801 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,820 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2022-07-22 17:39:13,822 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:13,824 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:13,824 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:13,824 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [616298234] [2022-07-22 17:39:13,825 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [616298234] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:13,825 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:13,825 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-07-22 17:39:13,825 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1761796808] [2022-07-22 17:39:13,825 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:13,826 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-07-22 17:39:13,826 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:13,826 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-07-22 17:39:13,826 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:13,827 INFO L87 Difference]: Start difference. First operand 242 states and 294 transitions. Second operand has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-07-22 17:39:14,021 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:14,021 INFO L93 Difference]: Finished difference Result 497 states and 615 transitions. [2022-07-22 17:39:14,021 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-07-22 17:39:14,022 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 51 [2022-07-22 17:39:14,022 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:14,024 INFO L225 Difference]: With dead ends: 497 [2022-07-22 17:39:14,024 INFO L226 Difference]: Without dead ends: 262 [2022-07-22 17:39:14,025 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2022-07-22 17:39:14,026 INFO L413 NwaCegarLoop]: 81 mSDtfsCounter, 132 mSDsluCounter, 236 mSDsCounter, 0 mSdLazyCounter, 212 mSolverCounterSat, 43 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 133 SdHoareTripleChecker+Valid, 317 SdHoareTripleChecker+Invalid, 255 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 43 IncrementalHoareTripleChecker+Valid, 212 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:14,026 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [133 Valid, 317 Invalid, 255 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [43 Valid, 212 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2022-07-22 17:39:14,027 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 262 states. [2022-07-22 17:39:14,046 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 262 to 248. [2022-07-22 17:39:14,046 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 248 states, 197 states have (on average 1.218274111675127) internal successors, (240), 212 states have internal predecessors, (240), 23 states have call successors, (23), 21 states have call predecessors, (23), 27 states have return successors, (37), 23 states have call predecessors, (37), 23 states have call successors, (37) [2022-07-22 17:39:14,048 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 248 states to 248 states and 300 transitions. [2022-07-22 17:39:14,048 INFO L78 Accepts]: Start accepts. Automaton has 248 states and 300 transitions. Word has length 51 [2022-07-22 17:39:14,048 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:14,049 INFO L495 AbstractCegarLoop]: Abstraction has 248 states and 300 transitions. [2022-07-22 17:39:14,049 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-07-22 17:39:14,049 INFO L276 IsEmpty]: Start isEmpty. Operand 248 states and 300 transitions. [2022-07-22 17:39:14,050 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2022-07-22 17:39:14,050 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:14,051 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:14,051 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2022-07-22 17:39:14,051 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:14,052 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:14,052 INFO L85 PathProgramCache]: Analyzing trace with hash 748412919, now seen corresponding path program 1 times [2022-07-22 17:39:14,052 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:14,052 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1169933126] [2022-07-22 17:39:14,052 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:14,052 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:14,066 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,086 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:14,088 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,093 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:14,097 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,113 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2022-07-22 17:39:14,114 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,116 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:14,116 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:14,116 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1169933126] [2022-07-22 17:39:14,117 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1169933126] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:14,117 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:14,117 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2022-07-22 17:39:14,117 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1399061926] [2022-07-22 17:39:14,117 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:14,118 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2022-07-22 17:39:14,118 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:14,118 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2022-07-22 17:39:14,118 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2022-07-22 17:39:14,119 INFO L87 Difference]: Start difference. First operand 248 states and 300 transitions. Second operand has 8 states, 8 states have (on average 5.5) internal successors, (44), 6 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-07-22 17:39:14,330 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:14,331 INFO L93 Difference]: Finished difference Result 460 states and 561 transitions. [2022-07-22 17:39:14,331 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2022-07-22 17:39:14,331 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.5) internal successors, (44), 6 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 51 [2022-07-22 17:39:14,333 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:14,335 INFO L225 Difference]: With dead ends: 460 [2022-07-22 17:39:14,335 INFO L226 Difference]: Without dead ends: 219 [2022-07-22 17:39:14,336 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=35, Invalid=97, Unknown=0, NotChecked=0, Total=132 [2022-07-22 17:39:14,336 INFO L413 NwaCegarLoop]: 74 mSDtfsCounter, 173 mSDsluCounter, 223 mSDsCounter, 0 mSdLazyCounter, 267 mSolverCounterSat, 52 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 297 SdHoareTripleChecker+Invalid, 319 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 52 IncrementalHoareTripleChecker+Valid, 267 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:14,337 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 297 Invalid, 319 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [52 Valid, 267 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-07-22 17:39:14,338 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 219 states. [2022-07-22 17:39:14,350 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 219 to 181. [2022-07-22 17:39:14,351 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 181 states, 143 states have (on average 1.2097902097902098) internal successors, (173), 153 states have internal predecessors, (173), 17 states have call successors, (17), 17 states have call predecessors, (17), 20 states have return successors, (23), 17 states have call predecessors, (23), 17 states have call successors, (23) [2022-07-22 17:39:14,352 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 181 states to 181 states and 213 transitions. [2022-07-22 17:39:14,355 INFO L78 Accepts]: Start accepts. Automaton has 181 states and 213 transitions. Word has length 51 [2022-07-22 17:39:14,356 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:14,356 INFO L495 AbstractCegarLoop]: Abstraction has 181 states and 213 transitions. [2022-07-22 17:39:14,356 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.5) internal successors, (44), 6 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-07-22 17:39:14,357 INFO L276 IsEmpty]: Start isEmpty. Operand 181 states and 213 transitions. [2022-07-22 17:39:14,358 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2022-07-22 17:39:14,358 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:14,358 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:14,358 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2022-07-22 17:39:14,358 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:14,359 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:14,359 INFO L85 PathProgramCache]: Analyzing trace with hash 614399413, now seen corresponding path program 1 times [2022-07-22 17:39:14,359 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:14,359 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1452524431] [2022-07-22 17:39:14,360 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:14,360 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:14,384 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,436 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:14,438 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,444 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2022-07-22 17:39:14,448 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,457 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2022-07-22 17:39:14,459 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,461 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:14,461 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:14,462 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1452524431] [2022-07-22 17:39:14,462 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1452524431] provided 1 perfect and 0 imperfect interpolant sequences [2022-07-22 17:39:14,462 INFO L184 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2022-07-22 17:39:14,462 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2022-07-22 17:39:14,462 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [974291599] [2022-07-22 17:39:14,462 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2022-07-22 17:39:14,463 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2022-07-22 17:39:14,463 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:14,464 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2022-07-22 17:39:14,464 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2022-07-22 17:39:14,464 INFO L87 Difference]: Start difference. First operand 181 states and 213 transitions. Second operand has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-07-22 17:39:14,722 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:14,722 INFO L93 Difference]: Finished difference Result 400 states and 502 transitions. [2022-07-22 17:39:14,723 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2022-07-22 17:39:14,723 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 51 [2022-07-22 17:39:14,723 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:14,725 INFO L225 Difference]: With dead ends: 400 [2022-07-22 17:39:14,725 INFO L226 Difference]: Without dead ends: 267 [2022-07-22 17:39:14,726 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 21 GetRequests, 8 SyntacticMatches, 1 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 14 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=63, Invalid=119, Unknown=0, NotChecked=0, Total=182 [2022-07-22 17:39:14,727 INFO L413 NwaCegarLoop]: 118 mSDtfsCounter, 187 mSDsluCounter, 299 mSDsCounter, 0 mSdLazyCounter, 276 mSolverCounterSat, 52 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 189 SdHoareTripleChecker+Valid, 417 SdHoareTripleChecker+Invalid, 328 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 52 IncrementalHoareTripleChecker+Valid, 276 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:14,727 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [189 Valid, 417 Invalid, 328 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [52 Valid, 276 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2022-07-22 17:39:14,728 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 267 states. [2022-07-22 17:39:14,741 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 267 to 265. [2022-07-22 17:39:14,741 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 265 states, 209 states have (on average 1.2057416267942584) internal successors, (252), 223 states have internal predecessors, (252), 27 states have call successors, (27), 25 states have call predecessors, (27), 28 states have return successors, (44), 27 states have call predecessors, (44), 27 states have call successors, (44) [2022-07-22 17:39:14,743 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 265 states to 265 states and 323 transitions. [2022-07-22 17:39:14,743 INFO L78 Accepts]: Start accepts. Automaton has 265 states and 323 transitions. Word has length 51 [2022-07-22 17:39:14,743 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:14,744 INFO L495 AbstractCegarLoop]: Abstraction has 265 states and 323 transitions. [2022-07-22 17:39:14,744 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2022-07-22 17:39:14,744 INFO L276 IsEmpty]: Start isEmpty. Operand 265 states and 323 transitions. [2022-07-22 17:39:14,745 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2022-07-22 17:39:14,745 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:14,746 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:14,746 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2022-07-22 17:39:14,746 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:14,747 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:14,747 INFO L85 PathProgramCache]: Analyzing trace with hash -1413668976, now seen corresponding path program 1 times [2022-07-22 17:39:14,747 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:14,747 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [620987586] [2022-07-22 17:39:14,747 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:14,747 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:14,762 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,800 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2022-07-22 17:39:14,802 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,810 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2022-07-22 17:39:14,814 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,837 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2022-07-22 17:39:14,839 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,846 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2022-07-22 17:39:14,847 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,849 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 66 [2022-07-22 17:39:14,850 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,851 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 73 [2022-07-22 17:39:14,853 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,854 INFO L376 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2022-07-22 17:39:14,854 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,855 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 12 proven. 7 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-07-22 17:39:14,856 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2022-07-22 17:39:14,856 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [620987586] [2022-07-22 17:39:14,856 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [620987586] provided 0 perfect and 1 imperfect interpolant sequences [2022-07-22 17:39:14,856 INFO L333 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1999872846] [2022-07-22 17:39:14,856 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:14,857 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2022-07-22 17:39:14,857 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2022-07-22 17:39:14,859 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2022-07-22 17:39:14,863 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2022-07-22 17:39:14,964 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2022-07-22 17:39:14,967 INFO L263 TraceCheckSpWp]: Trace formula consists of 449 conjuncts, 8 conjunts are in the unsatisfiable core [2022-07-22 17:39:14,973 INFO L286 TraceCheckSpWp]: Computing forward predicates... [2022-07-22 17:39:15,102 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 15 proven. 10 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2022-07-22 17:39:15,102 INFO L328 TraceCheckSpWp]: Computing backward predicates... [2022-07-22 17:39:15,227 INFO L134 CoverageAnalysis]: Checked inductivity of 25 backedges. 13 proven. 6 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2022-07-22 17:39:15,228 INFO L157 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1999872846] provided 0 perfect and 2 imperfect interpolant sequences [2022-07-22 17:39:15,228 INFO L184 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2022-07-22 17:39:15,228 INFO L197 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 6, 6] total 9 [2022-07-22 17:39:15,229 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1520023325] [2022-07-22 17:39:15,229 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2022-07-22 17:39:15,230 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2022-07-22 17:39:15,230 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2022-07-22 17:39:15,230 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2022-07-22 17:39:15,230 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=18, Invalid=54, Unknown=0, NotChecked=0, Total=72 [2022-07-22 17:39:15,231 INFO L87 Difference]: Start difference. First operand 265 states and 323 transitions. Second operand has 9 states, 9 states have (on average 9.11111111111111) internal successors, (82), 6 states have internal predecessors, (82), 3 states have call successors, (16), 6 states have call predecessors, (16), 3 states have return successors, (11), 3 states have call predecessors, (11), 3 states have call successors, (11) [2022-07-22 17:39:15,735 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2022-07-22 17:39:15,736 INFO L93 Difference]: Finished difference Result 612 states and 781 transitions. [2022-07-22 17:39:15,736 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2022-07-22 17:39:15,736 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 9.11111111111111) internal successors, (82), 6 states have internal predecessors, (82), 3 states have call successors, (16), 6 states have call predecessors, (16), 3 states have return successors, (11), 3 states have call predecessors, (11), 3 states have call successors, (11) Word has length 88 [2022-07-22 17:39:15,737 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2022-07-22 17:39:15,740 INFO L225 Difference]: With dead ends: 612 [2022-07-22 17:39:15,740 INFO L226 Difference]: Without dead ends: 395 [2022-07-22 17:39:15,741 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 216 GetRequests, 190 SyntacticMatches, 4 SemanticMatches, 22 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 112 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=163, Invalid=389, Unknown=0, NotChecked=0, Total=552 [2022-07-22 17:39:15,742 INFO L413 NwaCegarLoop]: 120 mSDtfsCounter, 315 mSDsluCounter, 368 mSDsCounter, 0 mSdLazyCounter, 407 mSolverCounterSat, 93 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 321 SdHoareTripleChecker+Valid, 488 SdHoareTripleChecker+Invalid, 500 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 93 IncrementalHoareTripleChecker+Valid, 407 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2022-07-22 17:39:15,743 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [321 Valid, 488 Invalid, 500 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [93 Valid, 407 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2022-07-22 17:39:15,744 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 395 states. [2022-07-22 17:39:15,768 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 395 to 362. [2022-07-22 17:39:15,769 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 362 states, 283 states have (on average 1.204946996466431) internal successors, (341), 302 states have internal predecessors, (341), 38 states have call successors, (38), 36 states have call predecessors, (38), 40 states have return successors, (65), 36 states have call predecessors, (65), 38 states have call successors, (65) [2022-07-22 17:39:15,771 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 362 states to 362 states and 444 transitions. [2022-07-22 17:39:15,772 INFO L78 Accepts]: Start accepts. Automaton has 362 states and 444 transitions. Word has length 88 [2022-07-22 17:39:15,772 INFO L84 Accepts]: Finished accepts. word is rejected. [2022-07-22 17:39:15,773 INFO L495 AbstractCegarLoop]: Abstraction has 362 states and 444 transitions. [2022-07-22 17:39:15,773 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 9.11111111111111) internal successors, (82), 6 states have internal predecessors, (82), 3 states have call successors, (16), 6 states have call predecessors, (16), 3 states have return successors, (11), 3 states have call predecessors, (11), 3 states have call successors, (11) [2022-07-22 17:39:15,773 INFO L276 IsEmpty]: Start isEmpty. Operand 362 states and 444 transitions. [2022-07-22 17:39:15,779 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 126 [2022-07-22 17:39:15,779 INFO L187 NwaCegarLoop]: Found error trace [2022-07-22 17:39:15,780 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:15,809 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2022-07-22 17:39:15,995 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2022-07-22 17:39:15,996 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2022-07-22 17:39:15,996 INFO L144 PredicateUnifier]: Initialized classic predicate unifier [2022-07-22 17:39:15,996 INFO L85 PathProgramCache]: Analyzing trace with hash -952395115, now seen corresponding path program 2 times [2022-07-22 17:39:15,996 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2022-07-22 17:39:15,997 INFO L333 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [289463509] [2022-07-22 17:39:15,997 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2022-07-22 17:39:15,997 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2022-07-22 17:39:16,034 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2022-07-22 17:39:16,034 INFO L352 TraceCheck]: Trace is feasible, we will do another trace check, this time with branch encoders. [2022-07-22 17:39:16,058 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2022-07-22 17:39:16,091 INFO L130 FreeRefinementEngine]: Strategy CAMEL found a feasible trace [2022-07-22 17:39:16,092 INFO L271 BasicCegarLoop]: Counterexample is feasible [2022-07-22 17:39:16,093 INFO L805 garLoopResultBuilder]: Registering result UNSAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2022-07-22 17:39:16,094 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2022-07-22 17:39:16,097 INFO L356 BasicCegarLoop]: Path program histogram: [2, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2022-07-22 17:39:16,100 INFO L176 ceAbstractionStarter]: Computing trace abstraction results [2022-07-22 17:39:16,169 INFO L202 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 22.07 05:39:16 BoogieIcfgContainer [2022-07-22 17:39:16,171 INFO L132 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2022-07-22 17:39:16,172 INFO L113 PluginConnector]: ------------------------Witness Printer---------------------------- [2022-07-22 17:39:16,172 INFO L271 PluginConnector]: Initializing Witness Printer... [2022-07-22 17:39:16,172 INFO L275 PluginConnector]: Witness Printer initialized [2022-07-22 17:39:16,173 INFO L185 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.07 05:39:11" (3/4) ... [2022-07-22 17:39:16,174 INFO L131 WitnessPrinter]: Generating witness for reachability counterexample [2022-07-22 17:39:16,273 INFO L141 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2022-07-22 17:39:16,273 INFO L132 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2022-07-22 17:39:16,274 INFO L158 Benchmark]: Toolchain (without parser) took 5574.13ms. Allocated memory was 92.3MB in the beginning and 144.7MB in the end (delta: 52.4MB). Free memory was 58.8MB in the beginning and 90.8MB in the end (delta: -32.0MB). Peak memory consumption was 19.5MB. Max. memory is 16.1GB. [2022-07-22 17:39:16,274 INFO L158 Benchmark]: CDTParser took 0.27ms. Allocated memory is still 92.3MB. Free memory was 48.9MB in the beginning and 48.8MB in the end (delta: 39.2kB). There was no memory consumed. Max. memory is 16.1GB. [2022-07-22 17:39:16,274 INFO L158 Benchmark]: CACSL2BoogieTranslator took 490.65ms. Allocated memory was 92.3MB in the beginning and 119.5MB in the end (delta: 27.3MB). Free memory was 58.6MB in the beginning and 86.0MB in the end (delta: -27.4MB). Peak memory consumption was 8.0MB. Max. memory is 16.1GB. [2022-07-22 17:39:16,275 INFO L158 Benchmark]: Boogie Procedure Inliner took 76.38ms. Allocated memory is still 119.5MB. Free memory was 85.5MB in the beginning and 83.4MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-07-22 17:39:16,275 INFO L158 Benchmark]: Boogie Preprocessor took 59.42ms. Allocated memory is still 119.5MB. Free memory was 83.4MB in the beginning and 81.8MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2022-07-22 17:39:16,275 INFO L158 Benchmark]: RCFGBuilder took 480.98ms. Allocated memory is still 119.5MB. Free memory was 81.8MB in the beginning and 65.1MB in the end (delta: 16.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2022-07-22 17:39:16,276 INFO L158 Benchmark]: TraceAbstraction took 4359.08ms. Allocated memory was 119.5MB in the beginning and 144.7MB in the end (delta: 25.2MB). Free memory was 64.5MB in the beginning and 100.3MB in the end (delta: -35.8MB). There was no memory consumed. Max. memory is 16.1GB. [2022-07-22 17:39:16,276 INFO L158 Benchmark]: Witness Printer took 101.39ms. Allocated memory is still 144.7MB. Free memory was 100.3MB in the beginning and 90.8MB in the end (delta: 9.4MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. [2022-07-22 17:39:16,278 INFO L339 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.27ms. Allocated memory is still 92.3MB. Free memory was 48.9MB in the beginning and 48.8MB in the end (delta: 39.2kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 490.65ms. Allocated memory was 92.3MB in the beginning and 119.5MB in the end (delta: 27.3MB). Free memory was 58.6MB in the beginning and 86.0MB in the end (delta: -27.4MB). Peak memory consumption was 8.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 76.38ms. Allocated memory is still 119.5MB. Free memory was 85.5MB in the beginning and 83.4MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 59.42ms. Allocated memory is still 119.5MB. Free memory was 83.4MB in the beginning and 81.8MB in the end (delta: 1.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 480.98ms. Allocated memory is still 119.5MB. Free memory was 81.8MB in the beginning and 65.1MB in the end (delta: 16.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * TraceAbstraction took 4359.08ms. Allocated memory was 119.5MB in the beginning and 144.7MB in the end (delta: 25.2MB). Free memory was 64.5MB in the beginning and 100.3MB in the end (delta: -35.8MB). There was no memory consumed. Max. memory is 16.1GB. * Witness Printer took 101.39ms. Allocated memory is still 144.7MB. Free memory was 100.3MB in the beginning and 90.8MB in the end (delta: 9.4MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - CounterExampleResult [Line: 553]: a call to reach_error is reachable a call to reach_error is reachable We found a FailurePath: [L50] int cleanupTimeShifts = 4; [L352] static struct __ACC__ERR *head = (struct __ACC__ERR *)0; [L565] int pumpRunning = 0; [L566] int systemActive = 1; [L768] int waterLevel = 1; [L769] int methaneLevelCritical = 0; VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L131] int retValue_acc ; [L132] int tmp ; [L136] FCALL select_helpers() [L137] FCALL select_features() [L138] CALL, EXPR valid_product() [L955] int retValue_acc ; [L958] retValue_acc = 1 [L959] return (retValue_acc); VAL [\result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=1, systemActive=1, waterLevel=1] [L138] RET, EXPR valid_product() [L138] tmp = valid_product() [L140] COND TRUE \read(tmp) [L142] FCALL setup() [L143] CALL runTest() [L122] CALL test() [L863] int splverifierCounter ; [L864] int tmp ; [L865] int tmp___0 ; [L866] int tmp___1 ; [L867] int tmp___2 ; [L870] splverifierCounter = 0 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L872] COND TRUE 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L874] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L880] tmp = __VERIFIER_nondet_int() [L882] COND TRUE \read(tmp) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, tmp=1, waterLevel=1] [L884] CALL waterRise() VAL [\old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L786] COND TRUE waterLevel < 2 [L787] waterLevel = waterLevel + 1 VAL [\old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L884] RET waterRise() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, tmp=1, waterLevel=2] [L890] tmp___0 = __VERIFIER_nondet_int() [L892] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, tmp=1, tmp___0=0, waterLevel=2] [L900] tmp___2 = __VERIFIER_nondet_int() [L902] COND TRUE \read(tmp___2) [L904] CALL startSystem() [L763] systemActive = 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L904] RET startSystem() [L917] CALL timeShift() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L572] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L579] COND TRUE \read(systemActive) [L581] CALL processEnvironment() [L627] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L630] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L645] CALL processEnvironment__wrappee__methaneQuery() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L601] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L604] COND TRUE ! pumpRunning [L606] CALL, EXPR isHighWaterLevel() [L741] int retValue_acc ; [L742] int tmp ; [L743] int tmp___0 ; [L747] CALL, EXPR isHighWaterSensorDry() [L848] int retValue_acc ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L851] COND FALSE !(waterLevel < 2) [L855] retValue_acc = 0 [L856] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=0, systemActive=1, waterLevel=2] [L747] RET, EXPR isHighWaterSensorDry() [L747] tmp = isHighWaterSensorDry() [L749] COND FALSE !(\read(tmp)) [L752] tmp___0 = 1 VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, tmp=0, tmp___0=1, waterLevel=2] [L754] retValue_acc = tmp___0 [L755] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=1, systemActive=1, tmp=0, tmp___0=1, waterLevel=2] [L606] RET, EXPR isHighWaterLevel() [L606] tmp = isHighWaterLevel() [L608] COND TRUE \read(tmp) [L610] CALL activatePump() [L660] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L664] CALL, EXPR isMethaneAlarm() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L685] int retValue_acc ; [L689] CALL, EXPR isMethaneLevelCritical() [L807] int retValue_acc ; [L810] retValue_acc = methaneLevelCritical [L811] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=0, systemActive=1, waterLevel=2] [L689] RET, EXPR isMethaneLevelCritical() [L689] retValue_acc = isMethaneLevelCritical() [L691] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, retValue_acc=0, systemActive=1, waterLevel=2] [L664] RET, EXPR isMethaneAlarm() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, isMethaneAlarm()=0, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L664] tmp = isMethaneAlarm() [L666] COND FALSE !(\read(tmp)) [L670] CALL activatePump__wrappee__highWaterSensor() [L655] pumpRunning = 1 VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L670] RET activatePump__wrappee__highWaterSensor() [L610] RET activatePump() [L645] RET processEnvironment__wrappee__methaneQuery() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L581] RET processEnvironment() [L587] CALL __utac_acc__Specification4_spec__1() [L158] int tmp ; [L159] int tmp___0 ; [L163] CALL, EXPR getWaterLevel() [L839] int retValue_acc ; [L842] retValue_acc = waterLevel [L843] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=2, systemActive=1, waterLevel=2] [L163] RET, EXPR getWaterLevel() [L163] tmp = getWaterLevel() [L165] COND FALSE !(tmp == 0) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=2, waterLevel=2] [L587] RET __utac_acc__Specification4_spec__1() [L917] RET timeShift() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=1, tmp___0=0, tmp___2=1, waterLevel=2] [L872] COND TRUE 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=1, tmp___0=0, tmp___2=1, waterLevel=2] [L874] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=1, tmp___0=0, tmp___2=1, waterLevel=2] [L880] tmp = __VERIFIER_nondet_int() [L882] COND FALSE !(\read(tmp)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=2] [L890] tmp___0 = __VERIFIER_nondet_int() [L892] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=2] [L900] tmp___2 = __VERIFIER_nondet_int() [L902] COND TRUE \read(tmp___2) [L904] CALL startSystem() [L763] systemActive = 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L904] RET startSystem() [L917] CALL timeShift() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=2] [L572] COND TRUE \read(pumpRunning) [L574] CALL lowerWaterLevel() [L774] COND TRUE waterLevel > 0 [L775] waterLevel = waterLevel - 1 VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L574] RET lowerWaterLevel() [L579] COND TRUE \read(systemActive) [L581] CALL processEnvironment() [L627] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L630] COND TRUE \read(pumpRunning) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L632] CALL, EXPR isMethaneAlarm() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L685] int retValue_acc ; [L689] CALL, EXPR isMethaneLevelCritical() [L807] int retValue_acc ; [L810] retValue_acc = methaneLevelCritical [L811] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=1] [L689] RET, EXPR isMethaneLevelCritical() [L689] retValue_acc = isMethaneLevelCritical() [L691] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=1] [L632] RET, EXPR isMethaneAlarm() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, isMethaneAlarm()=0, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L632] tmp = isMethaneAlarm() [L634] COND FALSE !(\read(tmp)) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=1] [L640] CALL processEnvironment__wrappee__methaneQuery() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L601] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L604] COND FALSE !(! pumpRunning) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L619] FCALL processEnvironment__wrappee__base() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L640] RET processEnvironment__wrappee__methaneQuery() VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=1] [L581] RET processEnvironment() [L587] CALL __utac_acc__Specification4_spec__1() [L158] int tmp ; [L159] int tmp___0 ; [L163] CALL, EXPR getWaterLevel() [L839] int retValue_acc ; [L842] retValue_acc = waterLevel [L843] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=2, \result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=1, systemActive=1, waterLevel=1] [L163] RET, EXPR getWaterLevel() [L163] tmp = getWaterLevel() [L165] COND FALSE !(tmp == 0) VAL [\old(pumpRunning)=1, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=1, waterLevel=1] [L587] RET __utac_acc__Specification4_spec__1() [L917] RET timeShift() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L872] COND TRUE 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L874] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L880] tmp = __VERIFIER_nondet_int() [L882] COND FALSE !(\read(tmp)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L890] tmp___0 = __VERIFIER_nondet_int() [L892] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, splverifierCounter=0, systemActive=1, tmp=0, tmp___0=0, tmp___2=1, waterLevel=1] [L900] tmp___2 = __VERIFIER_nondet_int() [L902] COND TRUE \read(tmp___2) [L904] CALL startSystem() [L763] systemActive = 1 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L904] RET startSystem() [L917] CALL timeShift() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=1] [L572] COND TRUE \read(pumpRunning) [L574] CALL lowerWaterLevel() [L774] COND TRUE waterLevel > 0 [L775] waterLevel = waterLevel - 1 VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L574] RET lowerWaterLevel() [L579] COND TRUE \read(systemActive) [L581] CALL processEnvironment() [L627] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L630] COND TRUE \read(pumpRunning) VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L632] CALL, EXPR isMethaneAlarm() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L685] int retValue_acc ; [L689] CALL, EXPR isMethaneLevelCritical() [L807] int retValue_acc ; [L810] retValue_acc = methaneLevelCritical [L811] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=0] [L689] RET, EXPR isMethaneLevelCritical() [L689] retValue_acc = isMethaneLevelCritical() [L691] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=0] [L632] RET, EXPR isMethaneAlarm() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, isMethaneAlarm()=0, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L632] tmp = isMethaneAlarm() [L634] COND FALSE !(\read(tmp)) VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=0] [L640] CALL processEnvironment__wrappee__methaneQuery() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L601] int tmp ; VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L604] COND FALSE !(! pumpRunning) VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L619] FCALL processEnvironment__wrappee__base() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] [L640] RET processEnvironment__wrappee__methaneQuery() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, tmp=0, waterLevel=0] [L581] RET processEnvironment() [L587] CALL __utac_acc__Specification4_spec__1() [L158] int tmp ; [L159] int tmp___0 ; [L163] CALL, EXPR getWaterLevel() [L839] int retValue_acc ; [L842] retValue_acc = waterLevel [L843] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=0, systemActive=1, waterLevel=0] [L163] RET, EXPR getWaterLevel() [L163] tmp = getWaterLevel() [L165] COND TRUE tmp == 0 [L167] CALL, EXPR isPumpRunning() [L696] int retValue_acc ; [L699] retValue_acc = pumpRunning [L700] return (retValue_acc); VAL [\old(pumpRunning)=1, \old(waterLevel)=1, \result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, retValue_acc=1, systemActive=1, waterLevel=0] [L167] RET, EXPR isPumpRunning() [L167] tmp___0 = isPumpRunning() [L169] COND TRUE \read(tmp___0) [L171] CALL __automaton_fail() [L553] reach_error() VAL [\old(pumpRunning)=1, \old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=1, systemActive=1, waterLevel=0] - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 89 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 4.2s, OverallIterations: 11, TraceHistogramMax: 3, PathProgramHistogramMax: 2, EmptinessCheckTime: 0.0s, AutomataDifference: 2.1s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1448 SdHoareTripleChecker+Valid, 1.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1426 mSDsluCounter, 2925 SdHoareTripleChecker+Invalid, 1.0s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 1974 mSDsCounter, 368 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 1657 IncrementalHoareTripleChecker+Invalid, 2025 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 368 mSolverCounterUnsat, 951 mSDtfsCounter, 1657 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 345 GetRequests, 247 SyntacticMatches, 5 SemanticMatches, 93 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 212 ImplicationChecksByTransitivity, 0.5s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=362occurred in iteration=10, InterpolantAutomatonStates: 96, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.2s AutomataMinimizationTime, 10 MinimizatonAttempts, 117 StatesRemovedByMinimization, 7 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 1.0s InterpolantComputationTime, 639 NumberOfCodeBlocks, 639 NumberOfCodeBlocksAsserted, 12 NumberOfCheckSat, 590 ConstructedInterpolants, 0 QuantifiedInterpolants, 1143 SizeOfPredicates, 4 NumberOfNonLiveVariables, 449 ConjunctsInSsa, 8 ConjunctsInUnsatCore, 12 InterpolantComputations, 9 PerfectInterpolantSequences, 52/75 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available RESULT: Ultimate proved your program to be incorrect! [2022-07-22 17:39:16,327 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Writing human readable error path to file UltimateCounterExample.errorpath Result: FALSE