./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version a0165632 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 4d13ffd2557e7d7902d8a5eac414f9fb7393252d85c14855e86000741be6847f --- Real Ultimate output --- This is Ultimate 0.2.5-dev-a016563 [2024-11-08 17:41:20,420 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-08 17:41:20,517 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-08 17:41:20,521 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-08 17:41:20,522 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-08 17:41:20,543 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-08 17:41:20,544 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-08 17:41:20,545 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-08 17:41:20,545 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-08 17:41:20,546 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-08 17:41:20,546 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-08 17:41:20,546 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-08 17:41:20,547 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-08 17:41:20,547 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-08 17:41:20,548 INFO L153 SettingsManager]: * Use SBE=true [2024-11-08 17:41:20,548 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-08 17:41:20,548 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-08 17:41:20,549 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-08 17:41:20,549 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-08 17:41:20,550 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-08 17:41:20,550 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-08 17:41:20,551 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-08 17:41:20,551 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-08 17:41:20,551 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-08 17:41:20,552 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-08 17:41:20,552 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-08 17:41:20,552 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-08 17:41:20,553 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-08 17:41:20,553 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-08 17:41:20,553 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-08 17:41:20,553 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-08 17:41:20,554 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-08 17:41:20,554 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-08 17:41:20,554 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-08 17:41:20,556 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-08 17:41:20,556 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-08 17:41:20,556 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-08 17:41:20,556 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-08 17:41:20,557 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-08 17:41:20,557 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-08 17:41:20,557 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-08 17:41:20,558 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-08 17:41:20,559 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 4d13ffd2557e7d7902d8a5eac414f9fb7393252d85c14855e86000741be6847f [2024-11-08 17:41:20,885 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-08 17:41:20,915 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-08 17:41:20,919 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-08 17:41:20,921 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-08 17:41:20,922 INFO L274 PluginConnector]: CDTParser initialized [2024-11-08 17:41:20,923 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/../../sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c Unable to find full path for "g++" [2024-11-08 17:41:22,951 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-08 17:41:23,248 INFO L384 CDTParser]: Found 1 translation units. [2024-11-08 17:41:23,249 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c [2024-11-08 17:41:23,262 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/data/0ea4bede3/6718dc6898be4ff09e7425195df6bc48/FLAGff5fff7fd [2024-11-08 17:41:23,286 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/data/0ea4bede3/6718dc6898be4ff09e7425195df6bc48 [2024-11-08 17:41:23,289 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-08 17:41:23,291 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-08 17:41:23,292 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-08 17:41:23,293 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-08 17:41:23,299 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-08 17:41:23,300 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:23,302 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@3b5e9f6c and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23, skipping insertion in model container [2024-11-08 17:41:23,303 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:23,364 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-08 17:41:23,573 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c[1605,1618] [2024-11-08 17:41:23,760 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-08 17:41:23,778 INFO L200 MainTranslator]: Completed pre-run [2024-11-08 17:41:23,788 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49] [2024-11-08 17:41:23,790 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [58] [2024-11-08 17:41:23,790 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [95] [2024-11-08 17:41:23,790 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [461] [2024-11-08 17:41:23,791 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [570] [2024-11-08 17:41:23,791 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [608] [2024-11-08 17:41:23,791 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [861] [2024-11-08 17:41:23,791 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [929] [2024-11-08 17:41:23,796 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/sv-benchmarks/c/product-lines/minepump_spec3_product62.cil.c[1605,1618] [2024-11-08 17:41:23,891 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-08 17:41:23,912 INFO L204 MainTranslator]: Completed translation [2024-11-08 17:41:23,912 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23 WrapperNode [2024-11-08 17:41:23,912 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-08 17:41:23,913 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-08 17:41:23,913 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-08 17:41:23,913 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-08 17:41:23,921 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:23,944 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:23,976 INFO L138 Inliner]: procedures = 58, calls = 106, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 229 [2024-11-08 17:41:23,976 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-08 17:41:23,977 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-08 17:41:23,977 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-08 17:41:23,977 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-08 17:41:23,990 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:23,990 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:23,992 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,007 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-08 17:41:24,007 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,008 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,012 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,017 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,018 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,020 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,022 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-08 17:41:24,023 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-08 17:41:24,023 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-08 17:41:24,024 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-08 17:41:24,024 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (1/1) ... [2024-11-08 17:41:24,030 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-08 17:41:24,056 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 [2024-11-08 17:41:24,073 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-08 17:41:24,076 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-08 17:41:24,102 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-08 17:41:24,102 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-08 17:41:24,102 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-08 17:41:24,103 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-08 17:41:24,103 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-08 17:41:24,103 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-08 17:41:24,103 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-08 17:41:24,103 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-08 17:41:24,103 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-08 17:41:24,104 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-08 17:41:24,104 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-08 17:41:24,104 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-08 17:41:24,104 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-08 17:41:24,104 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-08 17:41:24,104 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-08 17:41:24,105 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-08 17:41:24,105 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-08 17:41:24,105 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-08 17:41:24,105 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-08 17:41:24,105 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-08 17:41:24,105 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-08 17:41:24,105 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-08 17:41:24,105 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-08 17:41:24,106 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-08 17:41:24,222 INFO L238 CfgBuilder]: Building ICFG [2024-11-08 17:41:24,225 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-08 17:41:24,650 INFO L? ?]: Removed 54 outVars from TransFormulas that were not future-live. [2024-11-08 17:41:24,650 INFO L287 CfgBuilder]: Performing block encoding [2024-11-08 17:41:24,672 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-08 17:41:24,672 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-08 17:41:24,673 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 08.11 05:41:24 BoogieIcfgContainer [2024-11-08 17:41:24,673 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-08 17:41:24,675 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-08 17:41:24,676 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-08 17:41:24,678 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-08 17:41:24,679 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 08.11 05:41:23" (1/3) ... [2024-11-08 17:41:24,679 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2887d5a8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 08.11 05:41:24, skipping insertion in model container [2024-11-08 17:41:24,680 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 08.11 05:41:23" (2/3) ... [2024-11-08 17:41:24,680 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2887d5a8 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 08.11 05:41:24, skipping insertion in model container [2024-11-08 17:41:24,680 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 08.11 05:41:24" (3/3) ... [2024-11-08 17:41:24,681 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product62.cil.c [2024-11-08 17:41:24,698 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-08 17:41:24,699 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-08 17:41:24,766 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-08 17:41:24,773 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@74af5f94, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-08 17:41:24,773 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-08 17:41:24,777 INFO L276 IsEmpty]: Start isEmpty. Operand has 111 states, 81 states have (on average 1.3703703703703705) internal successors, (111), 91 states have internal predecessors, (111), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-08 17:41:24,788 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-08 17:41:24,788 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:24,790 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:24,791 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:24,799 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:24,799 INFO L85 PathProgramCache]: Analyzing trace with hash -733130985, now seen corresponding path program 1 times [2024-11-08 17:41:24,810 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:24,811 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1830130420] [2024-11-08 17:41:24,811 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:24,812 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:24,950 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,035 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-11-08 17:41:25,042 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,054 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:25,054 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:25,055 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1830130420] [2024-11-08 17:41:25,055 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1830130420] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:25,056 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:25,056 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-08 17:41:25,057 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1233806162] [2024-11-08 17:41:25,058 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:25,062 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-08 17:41:25,063 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:25,089 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-08 17:41:25,090 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-08 17:41:25,093 INFO L87 Difference]: Start difference. First operand has 111 states, 81 states have (on average 1.3703703703703705) internal successors, (111), 91 states have internal predecessors, (111), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-08 17:41:25,127 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:25,128 INFO L93 Difference]: Finished difference Result 214 states and 289 transitions. [2024-11-08 17:41:25,128 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-08 17:41:25,129 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25 [2024-11-08 17:41:25,130 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:25,138 INFO L225 Difference]: With dead ends: 214 [2024-11-08 17:41:25,138 INFO L226 Difference]: Without dead ends: 102 [2024-11-08 17:41:25,141 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-08 17:41:25,145 INFO L432 NwaCegarLoop]: 141 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 141 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:25,146 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 141 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-08 17:41:25,165 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 102 states. [2024-11-08 17:41:25,199 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 102 to 102. [2024-11-08 17:41:25,201 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 102 states, 74 states have (on average 1.3108108108108107) internal successors, (97), 83 states have internal predecessors, (97), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-08 17:41:25,203 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 102 states to 102 states and 132 transitions. [2024-11-08 17:41:25,207 INFO L78 Accepts]: Start accepts. Automaton has 102 states and 132 transitions. Word has length 25 [2024-11-08 17:41:25,207 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:25,207 INFO L471 AbstractCegarLoop]: Abstraction has 102 states and 132 transitions. [2024-11-08 17:41:25,208 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-08 17:41:25,208 INFO L276 IsEmpty]: Start isEmpty. Operand 102 states and 132 transitions. [2024-11-08 17:41:25,210 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2024-11-08 17:41:25,211 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:25,211 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:25,211 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-08 17:41:25,211 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:25,212 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:25,212 INFO L85 PathProgramCache]: Analyzing trace with hash -267573284, now seen corresponding path program 1 times [2024-11-08 17:41:25,213 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:25,213 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [277862565] [2024-11-08 17:41:25,213 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:25,214 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:25,241 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,324 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2024-11-08 17:41:25,327 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,333 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:25,336 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:25,337 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [277862565] [2024-11-08 17:41:25,337 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [277862565] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:25,337 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:25,338 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-08 17:41:25,338 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [181839247] [2024-11-08 17:41:25,338 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:25,339 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-08 17:41:25,339 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:25,340 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-08 17:41:25,340 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-08 17:41:25,342 INFO L87 Difference]: Start difference. First operand 102 states and 132 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-08 17:41:25,375 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:25,379 INFO L93 Difference]: Finished difference Result 169 states and 219 transitions. [2024-11-08 17:41:25,380 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-08 17:41:25,381 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 26 [2024-11-08 17:41:25,381 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:25,383 INFO L225 Difference]: With dead ends: 169 [2024-11-08 17:41:25,383 INFO L226 Difference]: Without dead ends: 93 [2024-11-08 17:41:25,384 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-08 17:41:25,386 INFO L432 NwaCegarLoop]: 119 mSDtfsCounter, 13 mSDsluCounter, 102 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 221 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:25,386 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 221 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-08 17:41:25,387 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 93 states. [2024-11-08 17:41:25,405 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 93 to 93. [2024-11-08 17:41:25,405 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 68 states have (on average 1.3235294117647058) internal successors, (90), 77 states have internal predecessors, (90), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-08 17:41:25,407 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 120 transitions. [2024-11-08 17:41:25,407 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 120 transitions. Word has length 26 [2024-11-08 17:41:25,407 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:25,408 INFO L471 AbstractCegarLoop]: Abstraction has 93 states and 120 transitions. [2024-11-08 17:41:25,408 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-08 17:41:25,408 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 120 transitions. [2024-11-08 17:41:25,409 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-08 17:41:25,409 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:25,409 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:25,410 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-08 17:41:25,410 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:25,411 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:25,411 INFO L85 PathProgramCache]: Analyzing trace with hash 1083458281, now seen corresponding path program 1 times [2024-11-08 17:41:25,411 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:25,411 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1538894722] [2024-11-08 17:41:25,411 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:25,412 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:25,445 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,627 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-08 17:41:25,629 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,632 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:25,632 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:25,632 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1538894722] [2024-11-08 17:41:25,633 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1538894722] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:25,633 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:25,633 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-08 17:41:25,633 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1372274304] [2024-11-08 17:41:25,633 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:25,634 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-08 17:41:25,634 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:25,634 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-08 17:41:25,635 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-08 17:41:25,635 INFO L87 Difference]: Start difference. First operand 93 states and 120 transitions. Second operand has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-08 17:41:25,727 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:25,731 INFO L93 Difference]: Finished difference Result 179 states and 234 transitions. [2024-11-08 17:41:25,732 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-08 17:41:25,732 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 31 [2024-11-08 17:41:25,732 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:25,733 INFO L225 Difference]: With dead ends: 179 [2024-11-08 17:41:25,734 INFO L226 Difference]: Without dead ends: 93 [2024-11-08 17:41:25,735 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-08 17:41:25,739 INFO L432 NwaCegarLoop]: 116 mSDtfsCounter, 114 mSDsluCounter, 230 mSDsCounter, 0 mSdLazyCounter, 9 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 114 SdHoareTripleChecker+Valid, 346 SdHoareTripleChecker+Invalid, 10 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 9 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:25,740 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [114 Valid, 346 Invalid, 10 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 9 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-08 17:41:25,740 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 93 states. [2024-11-08 17:41:25,750 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 93 to 93. [2024-11-08 17:41:25,751 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 68 states have (on average 1.3088235294117647) internal successors, (89), 77 states have internal predecessors, (89), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-08 17:41:25,753 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 119 transitions. [2024-11-08 17:41:25,753 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 119 transitions. Word has length 31 [2024-11-08 17:41:25,754 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:25,754 INFO L471 AbstractCegarLoop]: Abstraction has 93 states and 119 transitions. [2024-11-08 17:41:25,754 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-08 17:41:25,754 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 119 transitions. [2024-11-08 17:41:25,756 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2024-11-08 17:41:25,756 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:25,757 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:25,757 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-08 17:41:25,757 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:25,758 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:25,758 INFO L85 PathProgramCache]: Analyzing trace with hash 186453183, now seen corresponding path program 1 times [2024-11-08 17:41:25,758 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:25,758 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1268219110] [2024-11-08 17:41:25,759 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:25,759 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:25,777 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,890 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-08 17:41:25,893 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,904 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:25,906 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,927 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:25,930 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,935 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 35 [2024-11-08 17:41:25,940 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:25,942 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:25,946 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:25,947 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1268219110] [2024-11-08 17:41:25,947 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1268219110] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:25,947 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:25,947 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-08 17:41:25,947 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [368334202] [2024-11-08 17:41:25,948 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:25,948 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-08 17:41:25,948 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:25,949 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-08 17:41:25,949 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-08 17:41:25,949 INFO L87 Difference]: Start difference. First operand 93 states and 119 transitions. Second operand has 5 states, 5 states have (on average 7.4) internal successors, (37), 5 states have internal predecessors, (37), 4 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-08 17:41:26,268 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:26,269 INFO L93 Difference]: Finished difference Result 271 states and 345 transitions. [2024-11-08 17:41:26,269 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-08 17:41:26,269 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 7.4) internal successors, (37), 5 states have internal predecessors, (37), 4 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) Word has length 46 [2024-11-08 17:41:26,270 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:26,271 INFO L225 Difference]: With dead ends: 271 [2024-11-08 17:41:26,272 INFO L226 Difference]: Without dead ends: 185 [2024-11-08 17:41:26,273 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 13 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-08 17:41:26,274 INFO L432 NwaCegarLoop]: 132 mSDtfsCounter, 232 mSDsluCounter, 190 mSDsCounter, 0 mSdLazyCounter, 143 mSolverCounterSat, 77 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 234 SdHoareTripleChecker+Valid, 322 SdHoareTripleChecker+Invalid, 220 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 77 IncrementalHoareTripleChecker+Valid, 143 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:26,275 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [234 Valid, 322 Invalid, 220 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [77 Valid, 143 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-08 17:41:26,276 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 185 states. [2024-11-08 17:41:26,302 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 185 to 179. [2024-11-08 17:41:26,303 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 179 states, 133 states have (on average 1.2481203007518797) internal successors, (166), 142 states have internal predecessors, (166), 22 states have call successors, (22), 18 states have call predecessors, (22), 23 states have return successors, (29), 24 states have call predecessors, (29), 22 states have call successors, (29) [2024-11-08 17:41:26,309 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 179 states to 179 states and 217 transitions. [2024-11-08 17:41:26,309 INFO L78 Accepts]: Start accepts. Automaton has 179 states and 217 transitions. Word has length 46 [2024-11-08 17:41:26,310 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:26,310 INFO L471 AbstractCegarLoop]: Abstraction has 179 states and 217 transitions. [2024-11-08 17:41:26,310 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 7.4) internal successors, (37), 5 states have internal predecessors, (37), 4 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-08 17:41:26,310 INFO L276 IsEmpty]: Start isEmpty. Operand 179 states and 217 transitions. [2024-11-08 17:41:26,312 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-11-08 17:41:26,312 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:26,312 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:26,312 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-08 17:41:26,317 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:26,318 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:26,318 INFO L85 PathProgramCache]: Analyzing trace with hash 172804567, now seen corresponding path program 1 times [2024-11-08 17:41:26,318 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:26,319 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1969596436] [2024-11-08 17:41:26,319 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:26,319 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:26,346 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:26,493 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-08 17:41:26,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:26,513 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:26,518 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:26,524 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:26,526 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:26,527 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 41 [2024-11-08 17:41:26,530 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:26,534 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:26,534 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:26,534 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1969596436] [2024-11-08 17:41:26,534 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1969596436] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:26,534 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:26,535 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-08 17:41:26,535 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1857756192] [2024-11-08 17:41:26,535 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:26,536 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-08 17:41:26,536 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:26,536 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-08 17:41:26,539 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-08 17:41:26,541 INFO L87 Difference]: Start difference. First operand 179 states and 217 transitions. Second operand has 6 states, 6 states have (on average 7.166666666666667) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-08 17:41:26,938 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:26,939 INFO L93 Difference]: Finished difference Result 452 states and 568 transitions. [2024-11-08 17:41:26,939 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-08 17:41:26,940 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.166666666666667) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 52 [2024-11-08 17:41:26,941 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:26,945 INFO L225 Difference]: With dead ends: 452 [2024-11-08 17:41:26,948 INFO L226 Difference]: Without dead ends: 280 [2024-11-08 17:41:26,950 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=75, Unknown=0, NotChecked=0, Total=110 [2024-11-08 17:41:26,951 INFO L432 NwaCegarLoop]: 93 mSDtfsCounter, 154 mSDsluCounter, 299 mSDsCounter, 0 mSdLazyCounter, 187 mSolverCounterSat, 45 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 161 SdHoareTripleChecker+Valid, 392 SdHoareTripleChecker+Invalid, 232 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 45 IncrementalHoareTripleChecker+Valid, 187 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:26,952 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [161 Valid, 392 Invalid, 232 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [45 Valid, 187 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-08 17:41:26,958 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 280 states. [2024-11-08 17:41:27,030 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 280 to 278. [2024-11-08 17:41:27,031 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 278 states, 207 states have (on average 1.2367149758454106) internal successors, (256), 219 states have internal predecessors, (256), 35 states have call successors, (35), 30 states have call predecessors, (35), 35 states have return successors, (48), 37 states have call predecessors, (48), 35 states have call successors, (48) [2024-11-08 17:41:27,035 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 278 states to 278 states and 339 transitions. [2024-11-08 17:41:27,036 INFO L78 Accepts]: Start accepts. Automaton has 278 states and 339 transitions. Word has length 52 [2024-11-08 17:41:27,038 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:27,039 INFO L471 AbstractCegarLoop]: Abstraction has 278 states and 339 transitions. [2024-11-08 17:41:27,039 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.166666666666667) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (5), 3 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-08 17:41:27,039 INFO L276 IsEmpty]: Start isEmpty. Operand 278 states and 339 transitions. [2024-11-08 17:41:27,041 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-11-08 17:41:27,045 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:27,046 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:27,046 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-08 17:41:27,046 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:27,047 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:27,047 INFO L85 PathProgramCache]: Analyzing trace with hash -1506172547, now seen corresponding path program 1 times [2024-11-08 17:41:27,047 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:27,047 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1067737654] [2024-11-08 17:41:27,048 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:27,048 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:27,082 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:27,247 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:27,248 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:27,259 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-08 17:41:27,265 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:27,283 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:27,287 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:27,307 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:27,308 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:27,310 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 45 [2024-11-08 17:41:27,315 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:27,317 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:27,317 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:27,317 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1067737654] [2024-11-08 17:41:27,322 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1067737654] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:27,322 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:27,322 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-08 17:41:27,322 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [253389189] [2024-11-08 17:41:27,322 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:27,323 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-08 17:41:27,323 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:27,324 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-08 17:41:27,324 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=14, Invalid=42, Unknown=0, NotChecked=0, Total=56 [2024-11-08 17:41:27,324 INFO L87 Difference]: Start difference. First operand 278 states and 339 transitions. Second operand has 8 states, 8 states have (on average 5.625) internal successors, (45), 6 states have internal predecessors, (45), 3 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-08 17:41:28,114 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:28,114 INFO L93 Difference]: Finished difference Result 646 states and 820 transitions. [2024-11-08 17:41:28,115 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-11-08 17:41:28,115 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.625) internal successors, (45), 6 states have internal predecessors, (45), 3 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) Word has length 56 [2024-11-08 17:41:28,116 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:28,123 INFO L225 Difference]: With dead ends: 646 [2024-11-08 17:41:28,123 INFO L226 Difference]: Without dead ends: 474 [2024-11-08 17:41:28,124 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 33 GetRequests, 15 SyntacticMatches, 0 SemanticMatches, 18 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 59 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=107, Invalid=273, Unknown=0, NotChecked=0, Total=380 [2024-11-08 17:41:28,125 INFO L432 NwaCegarLoop]: 62 mSDtfsCounter, 362 mSDsluCounter, 288 mSDsCounter, 0 mSdLazyCounter, 466 mSolverCounterSat, 146 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 367 SdHoareTripleChecker+Valid, 350 SdHoareTripleChecker+Invalid, 612 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 146 IncrementalHoareTripleChecker+Valid, 466 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:28,126 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [367 Valid, 350 Invalid, 612 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [146 Valid, 466 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-08 17:41:28,131 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 474 states. [2024-11-08 17:41:28,201 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 474 to 464. [2024-11-08 17:41:28,202 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 464 states, 343 states have (on average 1.215743440233236) internal successors, (417), 365 states have internal predecessors, (417), 60 states have call successors, (60), 46 states have call predecessors, (60), 60 states have return successors, (95), 64 states have call predecessors, (95), 60 states have call successors, (95) [2024-11-08 17:41:28,205 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 464 states to 464 states and 572 transitions. [2024-11-08 17:41:28,208 INFO L78 Accepts]: Start accepts. Automaton has 464 states and 572 transitions. Word has length 56 [2024-11-08 17:41:28,208 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:28,208 INFO L471 AbstractCegarLoop]: Abstraction has 464 states and 572 transitions. [2024-11-08 17:41:28,209 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.625) internal successors, (45), 6 states have internal predecessors, (45), 3 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-08 17:41:28,209 INFO L276 IsEmpty]: Start isEmpty. Operand 464 states and 572 transitions. [2024-11-08 17:41:28,210 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-11-08 17:41:28,214 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:28,215 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:28,215 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-08 17:41:28,215 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:28,215 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:28,216 INFO L85 PathProgramCache]: Analyzing trace with hash -1444132933, now seen corresponding path program 1 times [2024-11-08 17:41:28,216 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:28,216 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1434447502] [2024-11-08 17:41:28,216 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:28,216 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:28,233 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,282 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:28,283 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,289 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-08 17:41:28,297 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,310 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:28,315 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,347 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:28,348 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,349 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 45 [2024-11-08 17:41:28,350 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,354 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:28,354 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:28,357 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1434447502] [2024-11-08 17:41:28,357 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1434447502] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:28,357 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:28,357 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-08 17:41:28,358 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2138799862] [2024-11-08 17:41:28,358 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:28,358 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-08 17:41:28,358 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:28,359 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-08 17:41:28,359 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-08 17:41:28,359 INFO L87 Difference]: Start difference. First operand 464 states and 572 transitions. Second operand has 6 states, 6 states have (on average 7.5) internal successors, (45), 4 states have internal predecessors, (45), 2 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-08 17:41:28,726 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:28,726 INFO L93 Difference]: Finished difference Result 832 states and 1032 transitions. [2024-11-08 17:41:28,727 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-08 17:41:28,727 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.5) internal successors, (45), 4 states have internal predecessors, (45), 2 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 56 [2024-11-08 17:41:28,729 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:28,732 INFO L225 Difference]: With dead ends: 832 [2024-11-08 17:41:28,733 INFO L226 Difference]: Without dead ends: 470 [2024-11-08 17:41:28,734 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 13 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=25, Invalid=47, Unknown=0, NotChecked=0, Total=72 [2024-11-08 17:41:28,737 INFO L432 NwaCegarLoop]: 70 mSDtfsCounter, 150 mSDsluCounter, 215 mSDsCounter, 0 mSdLazyCounter, 283 mSolverCounterSat, 53 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 153 SdHoareTripleChecker+Valid, 285 SdHoareTripleChecker+Invalid, 336 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 53 IncrementalHoareTripleChecker+Valid, 283 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:28,739 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [153 Valid, 285 Invalid, 336 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [53 Valid, 283 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-08 17:41:28,741 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 470 states. [2024-11-08 17:41:28,797 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 470 to 464. [2024-11-08 17:41:28,798 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 464 states, 343 states have (on average 1.2128279883381925) internal successors, (416), 365 states have internal predecessors, (416), 60 states have call successors, (60), 46 states have call predecessors, (60), 60 states have return successors, (95), 64 states have call predecessors, (95), 60 states have call successors, (95) [2024-11-08 17:41:28,801 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 464 states to 464 states and 571 transitions. [2024-11-08 17:41:28,802 INFO L78 Accepts]: Start accepts. Automaton has 464 states and 571 transitions. Word has length 56 [2024-11-08 17:41:28,802 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:28,802 INFO L471 AbstractCegarLoop]: Abstraction has 464 states and 571 transitions. [2024-11-08 17:41:28,803 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.5) internal successors, (45), 4 states have internal predecessors, (45), 2 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-08 17:41:28,803 INFO L276 IsEmpty]: Start isEmpty. Operand 464 states and 571 transitions. [2024-11-08 17:41:28,804 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-11-08 17:41:28,804 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:28,804 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:28,804 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-08 17:41:28,805 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:28,805 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:28,805 INFO L85 PathProgramCache]: Analyzing trace with hash -1578146439, now seen corresponding path program 1 times [2024-11-08 17:41:28,805 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:28,805 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1580139926] [2024-11-08 17:41:28,806 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:28,806 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:28,837 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,908 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:28,909 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,917 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-08 17:41:28,921 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:28,945 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:28,948 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,000 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:29,001 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,002 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 45 [2024-11-08 17:41:29,006 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,008 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:29,008 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:29,008 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1580139926] [2024-11-08 17:41:29,008 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1580139926] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:29,009 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:29,009 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-11-08 17:41:29,009 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [196444550] [2024-11-08 17:41:29,009 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:29,011 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2024-11-08 17:41:29,011 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:29,011 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2024-11-08 17:41:29,012 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2024-11-08 17:41:29,012 INFO L87 Difference]: Start difference. First operand 464 states and 571 transitions. Second operand has 9 states, 9 states have (on average 5.0) internal successors, (45), 7 states have internal predecessors, (45), 2 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-08 17:41:29,564 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:29,564 INFO L93 Difference]: Finished difference Result 930 states and 1159 transitions. [2024-11-08 17:41:29,565 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-11-08 17:41:29,565 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 5.0) internal successors, (45), 7 states have internal predecessors, (45), 2 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 56 [2024-11-08 17:41:29,565 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:29,570 INFO L225 Difference]: With dead ends: 930 [2024-11-08 17:41:29,571 INFO L226 Difference]: Without dead ends: 473 [2024-11-08 17:41:29,573 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 25 GetRequests, 14 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=37, Invalid=119, Unknown=0, NotChecked=0, Total=156 [2024-11-08 17:41:29,576 INFO L432 NwaCegarLoop]: 68 mSDtfsCounter, 150 mSDsluCounter, 397 mSDsCounter, 0 mSdLazyCounter, 553 mSolverCounterSat, 53 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 153 SdHoareTripleChecker+Valid, 465 SdHoareTripleChecker+Invalid, 606 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 53 IncrementalHoareTripleChecker+Valid, 553 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:29,576 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [153 Valid, 465 Invalid, 606 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [53 Valid, 553 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-08 17:41:29,577 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 473 states. [2024-11-08 17:41:29,629 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 473 to 467. [2024-11-08 17:41:29,630 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 467 states, 348 states have (on average 1.206896551724138) internal successors, (420), 369 states have internal predecessors, (420), 59 states have call successors, (59), 45 states have call predecessors, (59), 59 states have return successors, (94), 63 states have call predecessors, (94), 59 states have call successors, (94) [2024-11-08 17:41:29,634 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 467 states to 467 states and 573 transitions. [2024-11-08 17:41:29,635 INFO L78 Accepts]: Start accepts. Automaton has 467 states and 573 transitions. Word has length 56 [2024-11-08 17:41:29,635 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:29,636 INFO L471 AbstractCegarLoop]: Abstraction has 467 states and 573 transitions. [2024-11-08 17:41:29,636 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 5.0) internal successors, (45), 7 states have internal predecessors, (45), 2 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-08 17:41:29,636 INFO L276 IsEmpty]: Start isEmpty. Operand 467 states and 573 transitions. [2024-11-08 17:41:29,638 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2024-11-08 17:41:29,638 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:29,638 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:29,638 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-08 17:41:29,638 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:29,639 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:29,639 INFO L85 PathProgramCache]: Analyzing trace with hash -20827342, now seen corresponding path program 1 times [2024-11-08 17:41:29,639 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:29,639 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [815230847] [2024-11-08 17:41:29,639 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:29,639 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:29,662 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,781 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:29,782 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,789 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-08 17:41:29,794 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,823 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:29,828 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,881 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:29,884 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,922 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-11-08 17:41:29,923 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,937 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 54 [2024-11-08 17:41:29,938 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:29,940 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-08 17:41:29,940 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:29,940 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [815230847] [2024-11-08 17:41:29,941 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [815230847] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-08 17:41:29,941 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [488528156] [2024-11-08 17:41:29,941 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:29,941 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-08 17:41:29,941 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 [2024-11-08 17:41:29,943 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-08 17:41:29,946 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-08 17:41:30,038 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:30,041 INFO L255 TraceCheckSpWp]: Trace formula consists of 245 conjuncts, 17 conjuncts are in the unsatisfiable core [2024-11-08 17:41:30,048 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-08 17:41:30,259 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 3 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-08 17:41:30,259 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-08 17:41:30,259 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [488528156] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:30,260 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-08 17:41:30,260 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [11] total 16 [2024-11-08 17:41:30,260 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1400287067] [2024-11-08 17:41:30,260 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:30,261 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-08 17:41:30,261 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:30,261 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-08 17:41:30,262 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=41, Invalid=199, Unknown=0, NotChecked=0, Total=240 [2024-11-08 17:41:30,262 INFO L87 Difference]: Start difference. First operand 467 states and 573 transitions. Second operand has 8 states, 8 states have (on average 6.5) internal successors, (52), 5 states have internal predecessors, (52), 2 states have call successors, (7), 2 states have call predecessors, (7), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2024-11-08 17:41:30,579 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:30,579 INFO L93 Difference]: Finished difference Result 1368 states and 1709 transitions. [2024-11-08 17:41:30,579 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-11-08 17:41:30,580 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 6.5) internal successors, (52), 5 states have internal predecessors, (52), 2 states have call successors, (7), 2 states have call predecessors, (7), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) Word has length 65 [2024-11-08 17:41:30,580 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:30,586 INFO L225 Difference]: With dead ends: 1368 [2024-11-08 17:41:30,587 INFO L226 Difference]: Without dead ends: 908 [2024-11-08 17:41:30,589 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 84 GetRequests, 70 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 26 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=41, Invalid=199, Unknown=0, NotChecked=0, Total=240 [2024-11-08 17:41:30,590 INFO L432 NwaCegarLoop]: 116 mSDtfsCounter, 68 mSDsluCounter, 522 mSDsCounter, 0 mSdLazyCounter, 193 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 70 SdHoareTripleChecker+Valid, 638 SdHoareTripleChecker+Invalid, 195 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 193 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:30,590 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [70 Valid, 638 Invalid, 195 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 193 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-08 17:41:30,592 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 908 states. [2024-11-08 17:41:30,698 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 908 to 906. [2024-11-08 17:41:30,700 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 906 states, 673 states have (on average 1.1961367013372957) internal successors, (805), 711 states have internal predecessors, (805), 117 states have call successors, (117), 90 states have call predecessors, (117), 115 states have return successors, (189), 123 states have call predecessors, (189), 117 states have call successors, (189) [2024-11-08 17:41:30,705 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 906 states to 906 states and 1111 transitions. [2024-11-08 17:41:30,706 INFO L78 Accepts]: Start accepts. Automaton has 906 states and 1111 transitions. Word has length 65 [2024-11-08 17:41:30,707 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:30,707 INFO L471 AbstractCegarLoop]: Abstraction has 906 states and 1111 transitions. [2024-11-08 17:41:30,707 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 6.5) internal successors, (52), 5 states have internal predecessors, (52), 2 states have call successors, (7), 2 states have call predecessors, (7), 4 states have return successors, (6), 4 states have call predecessors, (6), 2 states have call successors, (6) [2024-11-08 17:41:30,707 INFO L276 IsEmpty]: Start isEmpty. Operand 906 states and 1111 transitions. [2024-11-08 17:41:30,709 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2024-11-08 17:41:30,709 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:30,709 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:30,731 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-08 17:41:30,912 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-08 17:41:30,912 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:30,913 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:30,913 INFO L85 PathProgramCache]: Analyzing trace with hash 1585958444, now seen corresponding path program 1 times [2024-11-08 17:41:30,913 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:30,913 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1022634075] [2024-11-08 17:41:30,913 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:30,913 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:30,928 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,012 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:31,014 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,026 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-08 17:41:31,030 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,047 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:31,051 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,062 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:31,063 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,065 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-11-08 17:41:31,067 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,069 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 55 [2024-11-08 17:41:31,071 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,074 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-08 17:41:31,074 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:31,074 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1022634075] [2024-11-08 17:41:31,074 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1022634075] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:31,075 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:31,075 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-08 17:41:31,075 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1885488983] [2024-11-08 17:41:31,075 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:31,075 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-08 17:41:31,076 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:31,076 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-08 17:41:31,076 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-11-08 17:41:31,076 INFO L87 Difference]: Start difference. First operand 906 states and 1111 transitions. Second operand has 7 states, 7 states have (on average 7.285714285714286) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 2 states have call predecessors, (6), 2 states have call successors, (6) [2024-11-08 17:41:31,697 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:31,697 INFO L93 Difference]: Finished difference Result 1807 states and 2216 transitions. [2024-11-08 17:41:31,698 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2024-11-08 17:41:31,698 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 7.285714285714286) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 2 states have call predecessors, (6), 2 states have call successors, (6) Word has length 66 [2024-11-08 17:41:31,698 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:31,703 INFO L225 Difference]: With dead ends: 1807 [2024-11-08 17:41:31,704 INFO L226 Difference]: Without dead ends: 908 [2024-11-08 17:41:31,707 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 30 GetRequests, 17 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 22 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=55, Invalid=155, Unknown=0, NotChecked=0, Total=210 [2024-11-08 17:41:31,707 INFO L432 NwaCegarLoop]: 109 mSDtfsCounter, 236 mSDsluCounter, 348 mSDsCounter, 0 mSdLazyCounter, 469 mSolverCounterSat, 74 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 239 SdHoareTripleChecker+Valid, 457 SdHoareTripleChecker+Invalid, 543 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 74 IncrementalHoareTripleChecker+Valid, 469 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:31,708 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [239 Valid, 457 Invalid, 543 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [74 Valid, 469 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-08 17:41:31,709 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 908 states. [2024-11-08 17:41:31,779 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 908 to 906. [2024-11-08 17:41:31,781 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 906 states, 673 states have (on average 1.1812778603268945) internal successors, (795), 711 states have internal predecessors, (795), 117 states have call successors, (117), 90 states have call predecessors, (117), 115 states have return successors, (174), 123 states have call predecessors, (174), 117 states have call successors, (174) [2024-11-08 17:41:31,787 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 906 states to 906 states and 1086 transitions. [2024-11-08 17:41:31,788 INFO L78 Accepts]: Start accepts. Automaton has 906 states and 1086 transitions. Word has length 66 [2024-11-08 17:41:31,789 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:31,789 INFO L471 AbstractCegarLoop]: Abstraction has 906 states and 1086 transitions. [2024-11-08 17:41:31,789 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 7.285714285714286) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 2 states have call predecessors, (6), 2 states have call successors, (6) [2024-11-08 17:41:31,789 INFO L276 IsEmpty]: Start isEmpty. Operand 906 states and 1086 transitions. [2024-11-08 17:41:31,791 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 70 [2024-11-08 17:41:31,791 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:31,792 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:31,792 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-08 17:41:31,792 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:31,793 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:31,793 INFO L85 PathProgramCache]: Analyzing trace with hash -425044722, now seen corresponding path program 1 times [2024-11-08 17:41:31,794 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:31,794 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [145172808] [2024-11-08 17:41:31,794 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:31,794 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:31,813 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,931 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:31,932 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,943 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 17 [2024-11-08 17:41:31,944 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,970 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-11-08 17:41:31,976 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,983 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:31,987 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,990 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:31,992 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,993 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-11-08 17:41:31,995 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:31,996 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 58 [2024-11-08 17:41:31,997 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:32,014 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-08 17:41:32,014 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:32,015 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [145172808] [2024-11-08 17:41:32,015 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [145172808] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-08 17:41:32,015 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-08 17:41:32,015 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [12] imperfect sequences [] total 12 [2024-11-08 17:41:32,015 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1782476539] [2024-11-08 17:41:32,015 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-08 17:41:32,016 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-11-08 17:41:32,016 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:32,017 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-11-08 17:41:32,017 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=110, Unknown=0, NotChecked=0, Total=132 [2024-11-08 17:41:32,017 INFO L87 Difference]: Start difference. First operand 906 states and 1086 transitions. Second operand has 12 states, 12 states have (on average 4.5) internal successors, (54), 8 states have internal predecessors, (54), 2 states have call successors, (8), 5 states have call predecessors, (8), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-08 17:41:33,620 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:33,620 INFO L93 Difference]: Finished difference Result 1773 states and 2145 transitions. [2024-11-08 17:41:33,621 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-11-08 17:41:33,621 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 4.5) internal successors, (54), 8 states have internal predecessors, (54), 2 states have call successors, (8), 5 states have call predecessors, (8), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) Word has length 69 [2024-11-08 17:41:33,622 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:33,628 INFO L225 Difference]: With dead ends: 1773 [2024-11-08 17:41:33,628 INFO L226 Difference]: Without dead ends: 874 [2024-11-08 17:41:33,631 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 47 GetRequests, 18 SyntacticMatches, 0 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 162 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=211, Invalid=719, Unknown=0, NotChecked=0, Total=930 [2024-11-08 17:41:33,632 INFO L432 NwaCegarLoop]: 45 mSDtfsCounter, 381 mSDsluCounter, 306 mSDsCounter, 0 mSdLazyCounter, 1626 mSolverCounterSat, 152 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 385 SdHoareTripleChecker+Valid, 351 SdHoareTripleChecker+Invalid, 1778 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 152 IncrementalHoareTripleChecker+Valid, 1626 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:33,632 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [385 Valid, 351 Invalid, 1778 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [152 Valid, 1626 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-11-08 17:41:33,634 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 874 states. [2024-11-08 17:41:33,715 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 874 to 874. [2024-11-08 17:41:33,717 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 874 states, 641 states have (on average 1.1528861154446177) internal successors, (739), 679 states have internal predecessors, (739), 117 states have call successors, (117), 90 states have call predecessors, (117), 115 states have return successors, (168), 123 states have call predecessors, (168), 117 states have call successors, (168) [2024-11-08 17:41:33,721 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 874 states to 874 states and 1024 transitions. [2024-11-08 17:41:33,723 INFO L78 Accepts]: Start accepts. Automaton has 874 states and 1024 transitions. Word has length 69 [2024-11-08 17:41:33,723 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:33,723 INFO L471 AbstractCegarLoop]: Abstraction has 874 states and 1024 transitions. [2024-11-08 17:41:33,723 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 12 states have (on average 4.5) internal successors, (54), 8 states have internal predecessors, (54), 2 states have call successors, (8), 5 states have call predecessors, (8), 3 states have return successors, (7), 3 states have call predecessors, (7), 2 states have call successors, (7) [2024-11-08 17:41:33,724 INFO L276 IsEmpty]: Start isEmpty. Operand 874 states and 1024 transitions. [2024-11-08 17:41:33,728 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 108 [2024-11-08 17:41:33,731 INFO L207 NwaCegarLoop]: Found error trace [2024-11-08 17:41:33,731 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:33,731 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-08 17:41:33,732 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-08 17:41:33,732 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-08 17:41:33,732 INFO L85 PathProgramCache]: Analyzing trace with hash 825199606, now seen corresponding path program 1 times [2024-11-08 17:41:33,733 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-08 17:41:33,733 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2071131922] [2024-11-08 17:41:33,733 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:33,733 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-08 17:41:33,751 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:33,859 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-08 17:41:33,860 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:33,870 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-08 17:41:33,881 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:33,981 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-08 17:41:33,984 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:33,988 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-08 17:41:33,991 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:33,996 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-08 17:41:33,997 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:33,999 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-11-08 17:41:34,000 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,002 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 34 [2024-11-08 17:41:34,003 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,020 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 79 [2024-11-08 17:41:34,022 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,025 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 1 [2024-11-08 17:41:34,027 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,028 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 90 [2024-11-08 17:41:34,029 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,030 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 96 [2024-11-08 17:41:34,033 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,039 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 21 proven. 5 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-11-08 17:41:34,040 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-08 17:41:34,040 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2071131922] [2024-11-08 17:41:34,040 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2071131922] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-08 17:41:34,041 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [476962092] [2024-11-08 17:41:34,041 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-08 17:41:34,041 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-08 17:41:34,041 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 [2024-11-08 17:41:34,043 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-08 17:41:34,045 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-08 17:41:34,158 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-08 17:41:34,160 INFO L255 TraceCheckSpWp]: Trace formula consists of 338 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-08 17:41:34,165 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-08 17:41:34,409 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 17 proven. 12 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2024-11-08 17:41:34,409 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-08 17:41:34,852 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 8 proven. 4 refuted. 0 times theorem prover too weak. 29 trivial. 0 not checked. [2024-11-08 17:41:34,853 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [476962092] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-08 17:41:34,853 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-08 17:41:34,853 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 9] total 20 [2024-11-08 17:41:34,853 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [591032902] [2024-11-08 17:41:34,853 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-08 17:41:34,854 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-11-08 17:41:34,854 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-08 17:41:34,855 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-11-08 17:41:34,855 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=62, Invalid=318, Unknown=0, NotChecked=0, Total=380 [2024-11-08 17:41:34,856 INFO L87 Difference]: Start difference. First operand 874 states and 1024 transitions. Second operand has 20 states, 20 states have (on average 7.1) internal successors, (142), 14 states have internal predecessors, (142), 6 states have call successors, (28), 10 states have call predecessors, (28), 8 states have return successors, (25), 8 states have call predecessors, (25), 6 states have call successors, (25) [2024-11-08 17:41:37,224 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-08 17:41:37,224 INFO L93 Difference]: Finished difference Result 2261 states and 2777 transitions. [2024-11-08 17:41:37,225 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 54 states. [2024-11-08 17:41:37,225 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 7.1) internal successors, (142), 14 states have internal predecessors, (142), 6 states have call successors, (28), 10 states have call predecessors, (28), 8 states have return successors, (25), 8 states have call predecessors, (25), 6 states have call successors, (25) Word has length 107 [2024-11-08 17:41:37,225 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-08 17:41:37,227 INFO L225 Difference]: With dead ends: 2261 [2024-11-08 17:41:37,228 INFO L226 Difference]: Without dead ends: 0 [2024-11-08 17:41:37,235 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 306 GetRequests, 231 SyntacticMatches, 7 SemanticMatches, 68 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1243 ImplicationChecksByTransitivity, 1.2s TimeCoverageRelationStatistics Valid=940, Invalid=3890, Unknown=0, NotChecked=0, Total=4830 [2024-11-08 17:41:37,236 INFO L432 NwaCegarLoop]: 72 mSDtfsCounter, 503 mSDsluCounter, 765 mSDsCounter, 0 mSdLazyCounter, 1490 mSolverCounterSat, 244 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 505 SdHoareTripleChecker+Valid, 837 SdHoareTripleChecker+Invalid, 1734 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 244 IncrementalHoareTripleChecker+Valid, 1490 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.3s IncrementalHoareTripleChecker+Time [2024-11-08 17:41:37,236 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [505 Valid, 837 Invalid, 1734 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [244 Valid, 1490 Invalid, 0 Unknown, 0 Unchecked, 1.3s Time] [2024-11-08 17:41:37,236 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-08 17:41:37,237 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-08 17:41:37,237 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-08 17:41:37,237 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-08 17:41:37,239 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 107 [2024-11-08 17:41:37,239 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-08 17:41:37,239 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-08 17:41:37,240 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 7.1) internal successors, (142), 14 states have internal predecessors, (142), 6 states have call successors, (28), 10 states have call predecessors, (28), 8 states have return successors, (25), 8 states have call predecessors, (25), 6 states have call successors, (25) [2024-11-08 17:41:37,240 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-08 17:41:37,240 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-08 17:41:37,242 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-08 17:41:37,263 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-08 17:41:37,443 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-11-08 17:41:37,446 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-08 17:41:37,449 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-08 17:41:43,677 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-08 17:41:43,710 WARN L162 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse0 (<= ~waterLevel~0 1)) (.cse1 (= |old(~pumpRunning~0)| 1)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and (<= 1 ~methaneLevelCritical~0) .cse0 .cse1 .cse2) (and (= ~methaneLevelCritical~0 0) .cse0 .cse1 .cse2))) (= ~pumpRunning~0 1)) Eliminated clause: (and (= ~pumpRunning~0 1) (let ((.cse0 (<= ~waterLevel~0 1)) (.cse1 (not (= 0 ~systemActive~0)))) (or (and (= ~methaneLevelCritical~0 0) .cse0 .cse1) (and (<= 1 ~methaneLevelCritical~0) .cse0 .cse1)))) [2024-11-08 17:41:43,746 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (and (let ((.cse3 (= ~pumpRunning~0 1)) (.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse5 (= ~pumpRunning~0 0)) (.cse4 (<= 1 |old(~methaneLevelCritical~0)|)) (.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse5 .cse0 .cse1 .cse2) (and .cse5 .cse4 .cse1 .cse2))) (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0)) Eliminated clause: (let ((.cse3 (= ~pumpRunning~0 1)) (.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse5 (= ~pumpRunning~0 0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse5 .cse4 .cse1 .cse2) (and .cse5 .cse0 .cse1 .cse2))) [2024-11-08 17:41:43,765 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~pumpRunning~0)| 1)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (let ((.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (<= |old(~waterLevel~0)| 2)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse4 .cse5 .cse2 .cse3) (and .cse0 .cse5 .cse2 .cse3))) (or (not .cse1) (and (= ~pumpRunning~0 0) .cse6)) (or (not .cse5) (and .cse6 (= ~pumpRunning~0 1))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~pumpRunning~0)| 1)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (let ((.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (<= |old(~waterLevel~0)| 2)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse4 .cse5 .cse2 .cse3) (and .cse0 .cse5 .cse2 .cse3))) (or (not .cse1) (and (= ~pumpRunning~0 0) .cse6)) (or (not .cse5) (and .cse6 (= ~pumpRunning~0 1)))))) [2024-11-08 17:41:43,778 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-08 17:41:43,800 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse4 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (<= 1 ~methaneLevelCritical~0)) (.cse5 (<= ~waterLevel~0 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5 .cse3) (and .cse6 .cse1 .cse2 .cse3))) (or (not .cse4) (= ~pumpRunning~0 0)) (or (not .cse2) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse4 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (<= 1 ~methaneLevelCritical~0)) (.cse5 (<= ~waterLevel~0 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5 .cse3) (and .cse6 .cse1 .cse2 .cse3))) (or (not .cse4) (= ~pumpRunning~0 0)) (or (not .cse2) (= ~pumpRunning~0 1))))) [2024-11-08 17:41:43,809 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-08 17:41:43,815 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse1 (<= 1 ~methaneLevelCritical~0)) (.cse2 (<= |old(~waterLevel~0)| 2)) (.cse5 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse2 .cse3 .cse5) (and .cse1 .cse2 .cse3 .cse5) (and .cse0 .cse4 (<= |old(~waterLevel~0)| 1) .cse3))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse3 (= ~pumpRunning~0 1)) (.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse1 (<= ~waterLevel~0 2)) (.cse5 (= ~pumpRunning~0 0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse5 .cse4 .cse1 .cse2) (and .cse5 .cse0 (<= ~waterLevel~0 1) .cse2))) [2024-11-08 17:41:43,828 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (let ((.cse4 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (<= 1 ~methaneLevelCritical~0)) (.cse5 (<= ~waterLevel~0 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5 .cse3) (and .cse6 .cse1 .cse2 .cse3))) (or (not .cse4) (= ~pumpRunning~0 0)) (or (not .cse2) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse4 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (<= 1 ~methaneLevelCritical~0)) (.cse5 (<= ~waterLevel~0 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5 .cse3) (and .cse6 .cse1 .cse2 .cse3))) (or (not .cse4) (= ~pumpRunning~0 0)) (or (not .cse2) (= ~pumpRunning~0 1))))) [2024-11-08 17:41:43,836 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-08 17:41:43,856 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 08.11 05:41:43 BoogieIcfgContainer [2024-11-08 17:41:43,856 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-08 17:41:43,857 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-08 17:41:43,857 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-08 17:41:43,857 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-08 17:41:43,857 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 08.11 05:41:24" (3/4) ... [2024-11-08 17:41:43,864 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-08 17:41:43,870 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-08 17:41:43,870 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-08 17:41:43,870 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-08 17:41:43,870 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-08 17:41:43,870 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-08 17:41:43,870 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-08 17:41:43,871 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-08 17:41:43,871 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-08 17:41:43,871 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-08 17:41:43,871 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-08 17:41:43,882 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 21 nodes and edges [2024-11-08 17:41:43,883 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-08 17:41:43,883 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-08 17:41:43,884 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-08 17:41:43,884 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-08 17:41:44,029 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/witness.graphml [2024-11-08 17:41:44,033 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/witness.yml [2024-11-08 17:41:44,033 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-08 17:41:44,034 INFO L158 Benchmark]: Toolchain (without parser) took 20742.67ms. Allocated memory was 134.2MB in the beginning and 247.5MB in the end (delta: 113.2MB). Free memory was 104.3MB in the beginning and 143.7MB in the end (delta: -39.4MB). Peak memory consumption was 74.4MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,034 INFO L158 Benchmark]: CDTParser took 0.29ms. Allocated memory is still 134.2MB. Free memory is still 108.7MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-08 17:41:44,034 INFO L158 Benchmark]: CACSL2BoogieTranslator took 620.05ms. Allocated memory is still 134.2MB. Free memory was 104.3MB in the beginning and 82.2MB in the end (delta: 22.0MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,034 INFO L158 Benchmark]: Boogie Procedure Inliner took 63.38ms. Allocated memory is still 134.2MB. Free memory was 82.2MB in the beginning and 80.1MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,035 INFO L158 Benchmark]: Boogie Preprocessor took 45.47ms. Allocated memory is still 134.2MB. Free memory was 80.1MB in the beginning and 77.6MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,035 INFO L158 Benchmark]: RCFGBuilder took 649.92ms. Allocated memory is still 134.2MB. Free memory was 77.6MB in the beginning and 57.1MB in the end (delta: 20.4MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,035 INFO L158 Benchmark]: TraceAbstraction took 19180.55ms. Allocated memory was 134.2MB in the beginning and 247.5MB in the end (delta: 113.2MB). Free memory was 56.6MB in the beginning and 153.1MB in the end (delta: -96.5MB). Peak memory consumption was 103.9MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,038 INFO L158 Benchmark]: Witness Printer took 176.46ms. Allocated memory is still 247.5MB. Free memory was 153.1MB in the beginning and 143.7MB in the end (delta: 9.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-08 17:41:44,039 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.29ms. Allocated memory is still 134.2MB. Free memory is still 108.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 620.05ms. Allocated memory is still 134.2MB. Free memory was 104.3MB in the beginning and 82.2MB in the end (delta: 22.0MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 63.38ms. Allocated memory is still 134.2MB. Free memory was 82.2MB in the beginning and 80.1MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 45.47ms. Allocated memory is still 134.2MB. Free memory was 80.1MB in the beginning and 77.6MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 649.92ms. Allocated memory is still 134.2MB. Free memory was 77.6MB in the beginning and 57.1MB in the end (delta: 20.4MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * TraceAbstraction took 19180.55ms. Allocated memory was 134.2MB in the beginning and 247.5MB in the end (delta: 113.2MB). Free memory was 56.6MB in the beginning and 153.1MB in the end (delta: -96.5MB). Peak memory consumption was 103.9MB. Max. memory is 16.1GB. * Witness Printer took 176.46ms. Allocated memory is still 247.5MB. Free memory was 153.1MB in the beginning and 143.7MB in the end (delta: 9.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49] - GenericResultAtLocation [Line: 58]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [58] - GenericResultAtLocation [Line: 95]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [95] - GenericResultAtLocation [Line: 461]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [461] - GenericResultAtLocation [Line: 570]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [570] - GenericResultAtLocation [Line: 608]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [608] - GenericResultAtLocation [Line: 861]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [861] - GenericResultAtLocation [Line: 929]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [929] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 54]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 111 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 12.7s, OverallIterations: 12, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 7.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2397 SdHoareTripleChecker+Valid, 4.9s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2363 mSDsluCounter, 4805 SdHoareTripleChecker+Invalid, 4.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3662 mSDsCounter, 847 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 5420 IncrementalHoareTripleChecker+Invalid, 6267 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 847 mSolverCounterUnsat, 1143 mSDtfsCounter, 5420 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 602 GetRequests, 414 SyntacticMatches, 7 SemanticMatches, 181 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1526 ImplicationChecksByTransitivity, 2.2s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=906occurred in iteration=9, InterpolantAutomatonStates: 160, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.7s AutomataMinimizationTime, 12 MinimizatonAttempts, 34 StatesRemovedByMinimization, 7 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 3.1s InterpolantComputationTime, 827 NumberOfCodeBlocks, 827 NumberOfCodeBlocksAsserted, 14 NumberOfCheckSat, 919 ConstructedInterpolants, 0 QuantifiedInterpolants, 1846 SizeOfPredicates, 2 NumberOfNonLiveVariables, 583 ConjunctsInSsa, 30 ConjunctsInUnsatCore, 15 InterpolantComputations, 11 PerfectInterpolantSequences, 112/135 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 941]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 872]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 873]: Loop Invariant Derived loop invariant: ((((((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (0 != systemActive)) || (((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || (((((methaneLevelCritical == 0) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || (((((1 <= methaneLevelCritical) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) - ProcedureContractResult [Line: 751]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((pumpRunning == 1) && ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) || (((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)))) Ensures: (((pumpRunning == 0) && (((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive)) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive)))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 641]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 1)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (0 != systemActive))) Ensures: ((((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 1)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (0 != systemActive))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 494]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive))) Ensures: ((((((((((\old(methaneLevelCritical) == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= \old(methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (\old(methaneLevelCritical) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (1 <= \old(methaneLevelCritical))) && (waterLevel <= 2)) && (0 != systemActive))) && ((\old(methaneLevelCritical) != 0) || (0 < methaneLevelCritical))) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) < 1))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 931]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 617]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((((waterLevel <= 1) && (waterLevel <= \old(waterLevel))) && (pumpRunning == 1)) || (\old(pumpRunning) != 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (waterLevel <= \old(waterLevel)))) && (((((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 2)) && (0 != systemActive)) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 2)) && (0 != systemActive))) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 2)) && (0 != systemActive)))) && (((methaneLevelCritical != 0) || (waterLevel < 2)) || (pumpRunning == 1))) && (((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || ((\old(waterLevel) == waterLevel) && (pumpRunning == 1)))) && ((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 506]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive))) Ensures: (((\result == methaneLevelCritical) && (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive)))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 649]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: (((((((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive)) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive))) && (((methaneLevelCritical != 0) || (waterLevel < 2)) || (pumpRunning == 1))) && ((\old(pumpRunning) != 1) || (pumpRunning == 1))) && ((pumpRunning == 0) || (pumpRunning == 1))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 482]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (0 != systemActive))) Ensures: (((((waterLevel <= ((long long) \old(waterLevel) + 1)) && (waterLevel <= 2)) && (0 != systemActive)) && ((((((methaneLevelCritical == 0) && (\old(waterLevel) <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (\old(waterLevel) <= 2))) || (((pumpRunning == 0) && (methaneLevelCritical == 0)) && (\old(waterLevel) <= 1))) || (((1 <= methaneLevelCritical) && (\old(waterLevel) <= 2)) && (pumpRunning == 1)))) && (((((head == \old(head)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 675]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Ensures: ((((((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive)) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive))) && (((methaneLevelCritical != 0) || (waterLevel < 2)) || (pumpRunning == 1))) && ((pumpRunning == 0) || (pumpRunning == 1))) && (((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 759]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive))) Ensures: ((((\result == 0) || (methaneLevelCritical != 0)) && (((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive)))) && ((((((head == \old(head)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-08 17:41:44,084 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_56b97527-2c57-4f7f-95e4-ebc97376cc05/bin/uautomizer-verify-jihMAELWvX/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE