./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec2_product59.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 023d838f Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec2_product59.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 80b4c453e300455caffbcb636daccd3af095acb6ed433fb3111a61f5db77a0b9 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.fs.icfgbuilder-eval-023d838-m [2024-11-09 23:16:23,163 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-09 23:16:23,215 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-09 23:16:23,220 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-09 23:16:23,220 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-09 23:16:23,240 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-09 23:16:23,240 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-09 23:16:23,240 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-09 23:16:23,241 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-09 23:16:23,242 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-09 23:16:23,242 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-09 23:16:23,242 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-09 23:16:23,243 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-09 23:16:23,244 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-09 23:16:23,244 INFO L153 SettingsManager]: * Use SBE=true [2024-11-09 23:16:23,245 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-09 23:16:23,245 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-09 23:16:23,245 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-09 23:16:23,245 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-09 23:16:23,245 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-09 23:16:23,245 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-09 23:16:23,248 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-09 23:16:23,249 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-09 23:16:23,249 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-09 23:16:23,249 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-09 23:16:23,249 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-09 23:16:23,249 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-09 23:16:23,249 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-09 23:16:23,249 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-09 23:16:23,250 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-09 23:16:23,250 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-09 23:16:23,250 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-09 23:16:23,250 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-09 23:16:23,250 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-09 23:16:23,250 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-09 23:16:23,251 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-09 23:16:23,251 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-09 23:16:23,251 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-09 23:16:23,251 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-09 23:16:23,251 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-09 23:16:23,251 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-09 23:16:23,252 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-09 23:16:23,252 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 80b4c453e300455caffbcb636daccd3af095acb6ed433fb3111a61f5db77a0b9 [2024-11-09 23:16:23,488 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-09 23:16:23,507 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-09 23:16:23,509 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-09 23:16:23,510 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-09 23:16:23,510 INFO L274 PluginConnector]: CDTParser initialized [2024-11-09 23:16:23,512 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec2_product59.cil.c [2024-11-09 23:16:24,684 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-09 23:16:24,912 INFO L384 CDTParser]: Found 1 translation units. [2024-11-09 23:16:24,913 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec2_product59.cil.c [2024-11-09 23:16:24,927 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/476715367/8424c8a00d85421084e4813d0995f7c8/FLAGbc0e2349d [2024-11-09 23:16:25,270 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/476715367/8424c8a00d85421084e4813d0995f7c8 [2024-11-09 23:16:25,274 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-09 23:16:25,274 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-09 23:16:25,275 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-09 23:16:25,276 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-09 23:16:25,281 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-09 23:16:25,281 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,282 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@6e9ddfba and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25, skipping insertion in model container [2024-11-09 23:16:25,282 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,315 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-09 23:16:25,482 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec2_product59.cil.c[1605,1618] [2024-11-09 23:16:25,583 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 23:16:25,593 INFO L200 MainTranslator]: Completed pre-run [2024-11-09 23:16:25,600 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49] [2024-11-09 23:16:25,601 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [58] [2024-11-09 23:16:25,601 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [300] [2024-11-09 23:16:25,601 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [370] [2024-11-09 23:16:25,601 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [409] [2024-11-09 23:16:25,601 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [509] [2024-11-09 23:16:25,602 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [544] [2024-11-09 23:16:25,602 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [910] [2024-11-09 23:16:25,606 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec2_product59.cil.c[1605,1618] [2024-11-09 23:16:25,651 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-09 23:16:25,667 INFO L204 MainTranslator]: Completed translation [2024-11-09 23:16:25,667 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25 WrapperNode [2024-11-09 23:16:25,667 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-09 23:16:25,668 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-09 23:16:25,668 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-09 23:16:25,668 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-09 23:16:25,673 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,687 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,712 INFO L138 Inliner]: procedures = 58, calls = 103, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 225 [2024-11-09 23:16:25,714 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-09 23:16:25,714 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-09 23:16:25,715 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-09 23:16:25,715 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-09 23:16:25,722 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,723 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,729 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,745 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-09 23:16:25,749 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,749 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,752 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,757 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,758 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,759 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,764 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-09 23:16:25,764 INFO L112 PluginConnector]: ------------------------IcfgBuilder---------------------------- [2024-11-09 23:16:25,764 INFO L270 PluginConnector]: Initializing IcfgBuilder... [2024-11-09 23:16:25,764 INFO L274 PluginConnector]: IcfgBuilder initialized [2024-11-09 23:16:25,765 INFO L184 PluginConnector]: Executing the observer IcfgBuilderObserver from plugin IcfgBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (1/1) ... [2024-11-09 23:16:25,773 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-09 23:16:25,781 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:25,794 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-09 23:16:25,797 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-09 23:16:25,878 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-09 23:16:25,878 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-09 23:16:25,878 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-09 23:16:25,878 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-09 23:16:25,878 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-09 23:16:25,878 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-09 23:16:25,878 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-09 23:16:25,879 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-09 23:16:25,879 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-09 23:16:25,879 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 23:16:25,880 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 23:16:25,880 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-09 23:16:25,880 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-09 23:16:25,880 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-09 23:16:25,880 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-09 23:16:25,880 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-09 23:16:25,880 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-09 23:16:25,881 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-09 23:16:25,881 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-09 23:16:25,881 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-09 23:16:25,958 INFO L256 CfgBuilder]: Building ICFG [2024-11-09 23:16:25,961 INFO L286 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-09 23:16:26,011 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L956: #res := ~retValue_acc~10; [2024-11-09 23:16:26,059 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L282-1: isLowWaterLevel_#res#1 := isLowWaterLevel_~retValue_acc~3#1; [2024-11-09 23:16:26,059 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L1011-1: isLowWaterSensorDry_#res#1 := isLowWaterSensorDry_~retValue_acc~13#1; [2024-11-09 23:16:26,059 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L208-1: isPumpRunning_#res#1 := isPumpRunning_~retValue_acc~1#1; [2024-11-09 23:16:26,114 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L541-1: valid_product_#res#1 := valid_product_~retValue_acc~6#1; [2024-11-09 23:16:26,114 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L506-1: main_#res#1 := main_~retValue_acc~4#1; [2024-11-09 23:16:26,141 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L1002-1: isHighWaterSensorDry_#res#1 := isHighWaterSensorDry_~retValue_acc~12#1; [2024-11-09 23:16:26,141 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L199-1: isMethaneAlarm_#res#1 := isMethaneAlarm_~retValue_acc~0#1; [2024-11-09 23:16:26,141 INFO L1247 $ProcedureCfgBuilder]: dead code at ProgramPoint L263-1: isHighWaterLevel_#res#1 := isHighWaterLevel_~retValue_acc~2#1; [2024-11-09 23:16:26,167 INFO L? ?]: Removed 49 outVars from TransFormulas that were not future-live. [2024-11-09 23:16:26,167 INFO L307 CfgBuilder]: Performing block encoding [2024-11-09 23:16:26,177 INFO L331 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-09 23:16:26,177 INFO L336 CfgBuilder]: Removed 0 assume(true) statements. [2024-11-09 23:16:26,177 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 09.11 11:16:26 BoogieIcfgContainer [2024-11-09 23:16:26,177 INFO L131 PluginConnector]: ------------------------ END IcfgBuilder---------------------------- [2024-11-09 23:16:26,179 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-09 23:16:26,179 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-09 23:16:26,181 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-09 23:16:26,181 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 09.11 11:16:25" (1/3) ... [2024-11-09 23:16:26,181 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@72f8831e and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 11:16:26, skipping insertion in model container [2024-11-09 23:16:26,181 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 09.11 11:16:25" (2/3) ... [2024-11-09 23:16:26,183 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@72f8831e and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 09.11 11:16:26, skipping insertion in model container [2024-11-09 23:16:26,183 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 09.11 11:16:26" (3/3) ... [2024-11-09 23:16:26,184 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product59.cil.c [2024-11-09 23:16:26,196 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-09 23:16:26,196 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-09 23:16:26,238 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-09 23:16:26,243 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@7f159b41, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-09 23:16:26,243 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-09 23:16:26,247 INFO L276 IsEmpty]: Start isEmpty. Operand has 104 states, 80 states have (on average 1.3625) internal successors, (109), 89 states have internal predecessors, (109), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-09 23:16:26,253 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 28 [2024-11-09 23:16:26,253 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:26,254 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:26,254 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:26,257 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:26,258 INFO L85 PathProgramCache]: Analyzing trace with hash -315758718, now seen corresponding path program 1 times [2024-11-09 23:16:26,264 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:26,264 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1060866499] [2024-11-09 23:16:26,264 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:26,265 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:26,350 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,390 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 16 [2024-11-09 23:16:26,392 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,396 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 23:16:26,396 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:26,396 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1060866499] [2024-11-09 23:16:26,397 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1060866499] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:26,397 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:26,397 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-09 23:16:26,398 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1888847651] [2024-11-09 23:16:26,399 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:26,401 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-09 23:16:26,402 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:26,418 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-09 23:16:26,419 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 23:16:26,421 INFO L87 Difference]: Start difference. First operand has 104 states, 80 states have (on average 1.3625) internal successors, (109), 89 states have internal predecessors, (109), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 11.5) internal successors, (23), 2 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:26,444 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:26,444 INFO L93 Difference]: Finished difference Result 198 states and 267 transitions. [2024-11-09 23:16:26,445 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-09 23:16:26,445 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 11.5) internal successors, (23), 2 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 27 [2024-11-09 23:16:26,446 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:26,451 INFO L225 Difference]: With dead ends: 198 [2024-11-09 23:16:26,451 INFO L226 Difference]: Without dead ends: 93 [2024-11-09 23:16:26,454 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-09 23:16:26,456 INFO L432 NwaCegarLoop]: 130 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 130 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:26,457 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 130 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:26,468 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 93 states. [2024-11-09 23:16:26,487 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 93 to 93. [2024-11-09 23:16:26,487 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 93 states, 71 states have (on average 1.3098591549295775) internal successors, (93), 79 states have internal predecessors, (93), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-09 23:16:26,489 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 93 states to 93 states and 120 transitions. [2024-11-09 23:16:26,490 INFO L78 Accepts]: Start accepts. Automaton has 93 states and 120 transitions. Word has length 27 [2024-11-09 23:16:26,490 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:26,490 INFO L471 AbstractCegarLoop]: Abstraction has 93 states and 120 transitions. [2024-11-09 23:16:26,491 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 11.5) internal successors, (23), 2 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:26,491 INFO L276 IsEmpty]: Start isEmpty. Operand 93 states and 120 transitions. [2024-11-09 23:16:26,495 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2024-11-09 23:16:26,495 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:26,495 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:26,496 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-09 23:16:26,496 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:26,496 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:26,497 INFO L85 PathProgramCache]: Analyzing trace with hash -356631268, now seen corresponding path program 1 times [2024-11-09 23:16:26,497 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:26,497 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [754710768] [2024-11-09 23:16:26,497 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:26,497 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:26,511 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,586 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 18 [2024-11-09 23:16:26,588 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,590 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 23:16:26,590 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:26,590 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [754710768] [2024-11-09 23:16:26,590 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [754710768] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:26,590 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:26,590 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 23:16:26,590 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2130703084] [2024-11-09 23:16:26,591 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:26,591 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 23:16:26,591 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:26,592 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 23:16:26,592 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 23:16:26,592 INFO L87 Difference]: Start difference. First operand 93 states and 120 transitions. Second operand has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:26,612 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:26,612 INFO L93 Difference]: Finished difference Result 146 states and 188 transitions. [2024-11-09 23:16:26,612 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 23:16:26,613 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 29 [2024-11-09 23:16:26,613 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:26,613 INFO L225 Difference]: With dead ends: 146 [2024-11-09 23:16:26,614 INFO L226 Difference]: Without dead ends: 83 [2024-11-09 23:16:26,614 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 23:16:26,616 INFO L432 NwaCegarLoop]: 106 mSDtfsCounter, 15 mSDsluCounter, 85 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 19 SdHoareTripleChecker+Valid, 191 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:26,616 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [19 Valid, 191 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:26,617 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 83 states. [2024-11-09 23:16:26,622 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 83 to 83. [2024-11-09 23:16:26,622 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 83 states, 64 states have (on average 1.328125) internal successors, (85), 72 states have internal predecessors, (85), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-09 23:16:26,624 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 83 states to 83 states and 107 transitions. [2024-11-09 23:16:26,624 INFO L78 Accepts]: Start accepts. Automaton has 83 states and 107 transitions. Word has length 29 [2024-11-09 23:16:26,624 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:26,624 INFO L471 AbstractCegarLoop]: Abstraction has 83 states and 107 transitions. [2024-11-09 23:16:26,624 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:26,624 INFO L276 IsEmpty]: Start isEmpty. Operand 83 states and 107 transitions. [2024-11-09 23:16:26,626 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-09 23:16:26,626 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:26,626 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:26,627 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-09 23:16:26,627 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:26,627 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:26,627 INFO L85 PathProgramCache]: Analyzing trace with hash 69512278, now seen corresponding path program 1 times [2024-11-09 23:16:26,627 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:26,627 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [65102581] [2024-11-09 23:16:26,628 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:26,628 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:26,643 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,726 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:26,729 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,732 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 23:16:26,732 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:26,733 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [65102581] [2024-11-09 23:16:26,733 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [65102581] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:26,733 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:26,733 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-09 23:16:26,733 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [522288714] [2024-11-09 23:16:26,733 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:26,734 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 23:16:26,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:26,735 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 23:16:26,736 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 23:16:26,736 INFO L87 Difference]: Start difference. First operand 83 states and 107 transitions. Second operand has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:26,763 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:26,763 INFO L93 Difference]: Finished difference Result 232 states and 305 transitions. [2024-11-09 23:16:26,763 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 23:16:26,764 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 31 [2024-11-09 23:16:26,764 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:26,765 INFO L225 Difference]: With dead ends: 232 [2024-11-09 23:16:26,765 INFO L226 Difference]: Without dead ends: 157 [2024-11-09 23:16:26,766 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-09 23:16:26,768 INFO L432 NwaCegarLoop]: 125 mSDtfsCounter, 86 mSDsluCounter, 96 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 86 SdHoareTripleChecker+Valid, 221 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:26,769 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [86 Valid, 221 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:26,770 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 157 states. [2024-11-09 23:16:26,785 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 157 to 153. [2024-11-09 23:16:26,786 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 153 states, 116 states have (on average 1.353448275862069) internal successors, (157), 131 states have internal predecessors, (157), 22 states have call successors, (22), 14 states have call predecessors, (22), 14 states have return successors, (22), 15 states have call predecessors, (22), 22 states have call successors, (22) [2024-11-09 23:16:26,788 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 153 states to 153 states and 201 transitions. [2024-11-09 23:16:26,789 INFO L78 Accepts]: Start accepts. Automaton has 153 states and 201 transitions. Word has length 31 [2024-11-09 23:16:26,789 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:26,789 INFO L471 AbstractCegarLoop]: Abstraction has 153 states and 201 transitions. [2024-11-09 23:16:26,789 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:26,789 INFO L276 IsEmpty]: Start isEmpty. Operand 153 states and 201 transitions. [2024-11-09 23:16:26,790 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 36 [2024-11-09 23:16:26,790 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:26,791 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:26,791 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-09 23:16:26,791 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:26,791 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:26,791 INFO L85 PathProgramCache]: Analyzing trace with hash 518617690, now seen corresponding path program 1 times [2024-11-09 23:16:26,791 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:26,792 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1682540157] [2024-11-09 23:16:26,792 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:26,792 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:26,810 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,965 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-09 23:16:26,967 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:26,971 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-09 23:16:26,974 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:26,974 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1682540157] [2024-11-09 23:16:26,974 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1682540157] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:26,974 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:26,975 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-09 23:16:26,975 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1931025670] [2024-11-09 23:16:26,975 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:26,975 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 23:16:26,975 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:26,976 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 23:16:26,976 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-09 23:16:26,976 INFO L87 Difference]: Start difference. First operand 153 states and 201 transitions. Second operand has 5 states, 5 states have (on average 6.4) internal successors, (32), 5 states have internal predecessors, (32), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:27,060 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:27,061 INFO L93 Difference]: Finished difference Result 382 states and 513 transitions. [2024-11-09 23:16:27,061 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-09 23:16:27,061 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.4) internal successors, (32), 5 states have internal predecessors, (32), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 35 [2024-11-09 23:16:27,062 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:27,064 INFO L225 Difference]: With dead ends: 382 [2024-11-09 23:16:27,066 INFO L226 Difference]: Without dead ends: 237 [2024-11-09 23:16:27,067 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-09 23:16:27,070 INFO L432 NwaCegarLoop]: 101 mSDtfsCounter, 55 mSDsluCounter, 265 mSDsCounter, 0 mSdLazyCounter, 30 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 55 SdHoareTripleChecker+Valid, 366 SdHoareTripleChecker+Invalid, 39 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 30 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:27,070 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [55 Valid, 366 Invalid, 39 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 30 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:27,071 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 237 states. [2024-11-09 23:16:27,094 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 237 to 236. [2024-11-09 23:16:27,095 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 236 states, 179 states have (on average 1.312849162011173) internal successors, (235), 196 states have internal predecessors, (235), 30 states have call successors, (30), 26 states have call predecessors, (30), 26 states have return successors, (38), 27 states have call predecessors, (38), 30 states have call successors, (38) [2024-11-09 23:16:27,098 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 236 states to 236 states and 303 transitions. [2024-11-09 23:16:27,099 INFO L78 Accepts]: Start accepts. Automaton has 236 states and 303 transitions. Word has length 35 [2024-11-09 23:16:27,099 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:27,099 INFO L471 AbstractCegarLoop]: Abstraction has 236 states and 303 transitions. [2024-11-09 23:16:27,099 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.4) internal successors, (32), 5 states have internal predecessors, (32), 1 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-09 23:16:27,100 INFO L276 IsEmpty]: Start isEmpty. Operand 236 states and 303 transitions. [2024-11-09 23:16:27,102 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-11-09 23:16:27,104 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:27,105 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:27,105 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-09 23:16:27,105 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:27,105 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:27,106 INFO L85 PathProgramCache]: Analyzing trace with hash 1759936719, now seen corresponding path program 1 times [2024-11-09 23:16:27,106 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:27,106 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1167765953] [2024-11-09 23:16:27,106 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:27,106 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:27,126 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,195 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:27,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,232 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:27,233 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,238 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 42 [2024-11-09 23:16:27,239 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,240 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 23:16:27,240 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:27,240 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1167765953] [2024-11-09 23:16:27,240 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1167765953] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:27,241 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:27,241 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 23:16:27,241 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2063461745] [2024-11-09 23:16:27,241 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:27,241 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 23:16:27,241 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:27,242 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 23:16:27,242 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 23:16:27,242 INFO L87 Difference]: Start difference. First operand 236 states and 303 transitions. Second operand has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 23:16:27,419 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:27,419 INFO L93 Difference]: Finished difference Result 707 states and 950 transitions. [2024-11-09 23:16:27,421 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 23:16:27,422 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) Word has length 53 [2024-11-09 23:16:27,422 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:27,425 INFO L225 Difference]: With dead ends: 707 [2024-11-09 23:16:27,425 INFO L226 Difference]: Without dead ends: 479 [2024-11-09 23:16:27,426 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-09 23:16:27,427 INFO L432 NwaCegarLoop]: 88 mSDtfsCounter, 163 mSDsluCounter, 281 mSDsCounter, 0 mSdLazyCounter, 129 mSolverCounterSat, 38 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 169 SdHoareTripleChecker+Valid, 369 SdHoareTripleChecker+Invalid, 167 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 38 IncrementalHoareTripleChecker+Valid, 129 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:27,427 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [169 Valid, 369 Invalid, 167 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [38 Valid, 129 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 23:16:27,428 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 479 states. [2024-11-09 23:16:27,466 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 479 to 468. [2024-11-09 23:16:27,467 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 468 states, 359 states have (on average 1.2841225626740946) internal successors, (461), 383 states have internal predecessors, (461), 57 states have call successors, (57), 47 states have call predecessors, (57), 51 states have return successors, (85), 56 states have call predecessors, (85), 57 states have call successors, (85) [2024-11-09 23:16:27,469 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 468 states to 468 states and 603 transitions. [2024-11-09 23:16:27,470 INFO L78 Accepts]: Start accepts. Automaton has 468 states and 603 transitions. Word has length 53 [2024-11-09 23:16:27,470 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:27,471 INFO L471 AbstractCegarLoop]: Abstraction has 468 states and 603 transitions. [2024-11-09 23:16:27,471 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 23:16:27,471 INFO L276 IsEmpty]: Start isEmpty. Operand 468 states and 603 transitions. [2024-11-09 23:16:27,472 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-11-09 23:16:27,472 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:27,472 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:27,474 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-09 23:16:27,475 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:27,475 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:27,475 INFO L85 PathProgramCache]: Analyzing trace with hash 1737304465, now seen corresponding path program 1 times [2024-11-09 23:16:27,475 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:27,475 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1890839870] [2024-11-09 23:16:27,475 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:27,475 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:27,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,540 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:27,545 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,573 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:27,575 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,577 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 42 [2024-11-09 23:16:27,578 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,580 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 23:16:27,580 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:27,580 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1890839870] [2024-11-09 23:16:27,581 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1890839870] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:27,581 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:27,581 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 23:16:27,581 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [269732840] [2024-11-09 23:16:27,581 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:27,581 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 23:16:27,581 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:27,581 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 23:16:27,582 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 23:16:27,582 INFO L87 Difference]: Start difference. First operand 468 states and 603 transitions. Second operand has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 23:16:27,720 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:27,721 INFO L93 Difference]: Finished difference Result 943 states and 1248 transitions. [2024-11-09 23:16:27,721 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-09 23:16:27,721 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) Word has length 53 [2024-11-09 23:16:27,721 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:27,724 INFO L225 Difference]: With dead ends: 943 [2024-11-09 23:16:27,726 INFO L226 Difference]: Without dead ends: 483 [2024-11-09 23:16:27,727 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-09 23:16:27,728 INFO L432 NwaCegarLoop]: 87 mSDtfsCounter, 59 mSDsluCounter, 291 mSDsCounter, 0 mSdLazyCounter, 122 mSolverCounterSat, 13 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 63 SdHoareTripleChecker+Valid, 378 SdHoareTripleChecker+Invalid, 135 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 122 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:27,728 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [63 Valid, 378 Invalid, 135 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 122 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 23:16:27,731 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 483 states. [2024-11-09 23:16:27,758 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 483 to 480. [2024-11-09 23:16:27,759 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 480 states, 371 states have (on average 1.274932614555256) internal successors, (473), 395 states have internal predecessors, (473), 57 states have call successors, (57), 47 states have call predecessors, (57), 51 states have return successors, (85), 56 states have call predecessors, (85), 57 states have call successors, (85) [2024-11-09 23:16:27,761 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 480 states to 480 states and 615 transitions. [2024-11-09 23:16:27,762 INFO L78 Accepts]: Start accepts. Automaton has 480 states and 615 transitions. Word has length 53 [2024-11-09 23:16:27,762 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:27,762 INFO L471 AbstractCegarLoop]: Abstraction has 480 states and 615 transitions. [2024-11-09 23:16:27,762 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 23:16:27,762 INFO L276 IsEmpty]: Start isEmpty. Operand 480 states and 615 transitions. [2024-11-09 23:16:27,763 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-11-09 23:16:27,763 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:27,764 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:27,764 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-09 23:16:27,764 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:27,765 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:27,765 INFO L85 PathProgramCache]: Analyzing trace with hash 1482567920, now seen corresponding path program 1 times [2024-11-09 23:16:27,765 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:27,765 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [647553168] [2024-11-09 23:16:27,765 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:27,765 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:27,774 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,811 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:27,814 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,853 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:27,854 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,855 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 42 [2024-11-09 23:16:27,860 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:27,861 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 23:16:27,861 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:27,861 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [647553168] [2024-11-09 23:16:27,861 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [647553168] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:27,861 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:27,861 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-09 23:16:27,861 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [194389888] [2024-11-09 23:16:27,861 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:27,862 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 23:16:27,862 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:27,862 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 23:16:27,862 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-09 23:16:27,862 INFO L87 Difference]: Start difference. First operand 480 states and 615 transitions. Second operand has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 23:16:28,033 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:28,034 INFO L93 Difference]: Finished difference Result 872 states and 1124 transitions. [2024-11-09 23:16:28,034 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-09 23:16:28,035 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) Word has length 53 [2024-11-09 23:16:28,035 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:28,037 INFO L225 Difference]: With dead ends: 872 [2024-11-09 23:16:28,038 INFO L226 Difference]: Without dead ends: 400 [2024-11-09 23:16:28,039 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 8 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=35, Invalid=75, Unknown=0, NotChecked=0, Total=110 [2024-11-09 23:16:28,040 INFO L432 NwaCegarLoop]: 95 mSDtfsCounter, 188 mSDsluCounter, 297 mSDsCounter, 0 mSdLazyCounter, 143 mSolverCounterSat, 41 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 196 SdHoareTripleChecker+Valid, 392 SdHoareTripleChecker+Invalid, 184 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 41 IncrementalHoareTripleChecker+Valid, 143 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:28,041 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [196 Valid, 392 Invalid, 184 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [41 Valid, 143 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 23:16:28,042 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 400 states. [2024-11-09 23:16:28,068 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 400 to 387. [2024-11-09 23:16:28,069 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 387 states, 298 states have (on average 1.2516778523489933) internal successors, (373), 317 states have internal predecessors, (373), 46 states have call successors, (46), 38 states have call predecessors, (46), 42 states have return successors, (60), 45 states have call predecessors, (60), 46 states have call successors, (60) [2024-11-09 23:16:28,070 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 387 states to 387 states and 479 transitions. [2024-11-09 23:16:28,071 INFO L78 Accepts]: Start accepts. Automaton has 387 states and 479 transitions. Word has length 53 [2024-11-09 23:16:28,072 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:28,072 INFO L471 AbstractCegarLoop]: Abstraction has 387 states and 479 transitions. [2024-11-09 23:16:28,072 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.333333333333333) internal successors, (44), 5 states have internal predecessors, (44), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 1 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-09 23:16:28,072 INFO L276 IsEmpty]: Start isEmpty. Operand 387 states and 479 transitions. [2024-11-09 23:16:28,073 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 58 [2024-11-09 23:16:28,073 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:28,073 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:28,073 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-09 23:16:28,073 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:28,074 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:28,074 INFO L85 PathProgramCache]: Analyzing trace with hash 2048593104, now seen corresponding path program 1 times [2024-11-09 23:16:28,074 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:28,074 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1386928888] [2024-11-09 23:16:28,074 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:28,074 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:28,088 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,114 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:28,115 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,121 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-09 23:16:28,124 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,128 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:28,131 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,132 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2024-11-09 23:16:28,133 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,134 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 23:16:28,134 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:28,134 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1386928888] [2024-11-09 23:16:28,135 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1386928888] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:28,135 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-09 23:16:28,135 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-09 23:16:28,135 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1750668112] [2024-11-09 23:16:28,135 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:28,135 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 23:16:28,135 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:28,135 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 23:16:28,136 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-09 23:16:28,136 INFO L87 Difference]: Start difference. First operand 387 states and 479 transitions. Second operand has 5 states, 5 states have (on average 9.2) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (5), 4 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-09 23:16:28,387 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:28,387 INFO L93 Difference]: Finished difference Result 843 states and 1108 transitions. [2024-11-09 23:16:28,387 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-09 23:16:28,387 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 9.2) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (5), 4 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 57 [2024-11-09 23:16:28,388 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:28,391 INFO L225 Difference]: With dead ends: 843 [2024-11-09 23:16:28,392 INFO L226 Difference]: Without dead ends: 840 [2024-11-09 23:16:28,393 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 20 GetRequests, 13 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=27, Invalid=45, Unknown=0, NotChecked=0, Total=72 [2024-11-09 23:16:28,394 INFO L432 NwaCegarLoop]: 73 mSDtfsCounter, 343 mSDsluCounter, 145 mSDsCounter, 0 mSdLazyCounter, 149 mSolverCounterSat, 129 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 347 SdHoareTripleChecker+Valid, 218 SdHoareTripleChecker+Invalid, 278 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 129 IncrementalHoareTripleChecker+Valid, 149 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:28,395 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [347 Valid, 218 Invalid, 278 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [129 Valid, 149 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-09 23:16:28,396 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 840 states. [2024-11-09 23:16:28,430 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 840 to 647. [2024-11-09 23:16:28,431 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 647 states, 495 states have (on average 1.2646464646464646) internal successors, (626), 538 states have internal predecessors, (626), 83 states have call successors, (83), 59 states have call predecessors, (83), 68 states have return successors, (135), 70 states have call predecessors, (135), 83 states have call successors, (135) [2024-11-09 23:16:28,434 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 647 states to 647 states and 844 transitions. [2024-11-09 23:16:28,434 INFO L78 Accepts]: Start accepts. Automaton has 647 states and 844 transitions. Word has length 57 [2024-11-09 23:16:28,435 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:28,435 INFO L471 AbstractCegarLoop]: Abstraction has 647 states and 844 transitions. [2024-11-09 23:16:28,435 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 9.2) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (5), 4 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-09 23:16:28,435 INFO L276 IsEmpty]: Start isEmpty. Operand 647 states and 844 transitions. [2024-11-09 23:16:28,437 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 88 [2024-11-09 23:16:28,438 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:28,438 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:28,438 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-09 23:16:28,438 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:28,438 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:28,439 INFO L85 PathProgramCache]: Analyzing trace with hash -178230751, now seen corresponding path program 1 times [2024-11-09 23:16:28,439 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:28,439 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [383933433] [2024-11-09 23:16:28,439 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:28,439 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:28,450 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,469 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:28,470 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,478 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-09 23:16:28,485 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,541 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:28,545 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,636 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:28,638 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,658 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:28,660 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,664 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 76 [2024-11-09 23:16:28,664 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,665 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 15 proven. 4 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2024-11-09 23:16:28,667 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:28,667 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [383933433] [2024-11-09 23:16:28,667 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [383933433] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:28,667 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [527325234] [2024-11-09 23:16:28,667 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:28,668 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:28,668 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:28,669 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:28,675 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-09 23:16:28,750 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:28,752 INFO L255 TraceCheckSpWp]: Trace formula consists of 303 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-09 23:16:28,758 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:28,783 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 11 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-09 23:16:28,783 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 23:16:28,783 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [527325234] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:28,783 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 23:16:28,783 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [13] total 13 [2024-11-09 23:16:28,784 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1809804842] [2024-11-09 23:16:28,784 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:28,784 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 23:16:28,784 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:28,788 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 23:16:28,788 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=28, Invalid=128, Unknown=0, NotChecked=0, Total=156 [2024-11-09 23:16:28,788 INFO L87 Difference]: Start difference. First operand 647 states and 844 transitions. Second operand has 3 states, 3 states have (on average 21.666666666666668) internal successors, (65), 3 states have internal predecessors, (65), 3 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-09 23:16:28,809 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:28,810 INFO L93 Difference]: Finished difference Result 734 states and 955 transitions. [2024-11-09 23:16:28,810 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 23:16:28,810 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 21.666666666666668) internal successors, (65), 3 states have internal predecessors, (65), 3 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 3 states have call successors, (5) Word has length 87 [2024-11-09 23:16:28,811 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:28,812 INFO L225 Difference]: With dead ends: 734 [2024-11-09 23:16:28,812 INFO L226 Difference]: Without dead ends: 320 [2024-11-09 23:16:28,813 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 109 GetRequests, 98 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 15 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=28, Invalid=128, Unknown=0, NotChecked=0, Total=156 [2024-11-09 23:16:28,815 INFO L432 NwaCegarLoop]: 132 mSDtfsCounter, 38 mSDsluCounter, 102 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 38 SdHoareTripleChecker+Valid, 234 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:28,815 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [38 Valid, 234 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:28,815 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 320 states. [2024-11-09 23:16:28,830 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 320 to 320. [2024-11-09 23:16:28,830 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 320 states, 246 states have (on average 1.2276422764227641) internal successors, (302), 266 states have internal predecessors, (302), 39 states have call successors, (39), 29 states have call predecessors, (39), 34 states have return successors, (64), 34 states have call predecessors, (64), 39 states have call successors, (64) [2024-11-09 23:16:28,832 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 320 states to 320 states and 405 transitions. [2024-11-09 23:16:28,833 INFO L78 Accepts]: Start accepts. Automaton has 320 states and 405 transitions. Word has length 87 [2024-11-09 23:16:28,833 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:28,833 INFO L471 AbstractCegarLoop]: Abstraction has 320 states and 405 transitions. [2024-11-09 23:16:28,833 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 21.666666666666668) internal successors, (65), 3 states have internal predecessors, (65), 3 states have call successors, (6), 3 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-09 23:16:28,833 INFO L276 IsEmpty]: Start isEmpty. Operand 320 states and 405 transitions. [2024-11-09 23:16:28,834 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2024-11-09 23:16:28,835 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:28,835 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:28,848 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-09 23:16:29,035 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:29,036 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:29,036 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:29,036 INFO L85 PathProgramCache]: Analyzing trace with hash -237225440, now seen corresponding path program 1 times [2024-11-09 23:16:29,036 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:29,036 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [633198086] [2024-11-09 23:16:29,037 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:29,037 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:29,052 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,102 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:29,102 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,114 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:29,122 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,140 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:29,143 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,153 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:29,154 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,155 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:29,158 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,159 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 77 [2024-11-09 23:16:29,160 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,160 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:29,161 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,162 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 87 [2024-11-09 23:16:29,163 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,164 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 19 proven. 3 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2024-11-09 23:16:29,164 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:29,164 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [633198086] [2024-11-09 23:16:29,164 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [633198086] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:29,165 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1150773212] [2024-11-09 23:16:29,165 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:29,165 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:29,165 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:29,166 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:29,167 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-09 23:16:29,260 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,262 INFO L255 TraceCheckSpWp]: Trace formula consists of 328 conjuncts, 4 conjuncts are in the unsatisfiable core [2024-11-09 23:16:29,264 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:29,342 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 30 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 23:16:29,342 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 23:16:29,342 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1150773212] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:29,343 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 23:16:29,343 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [6] total 6 [2024-11-09 23:16:29,343 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1518607202] [2024-11-09 23:16:29,343 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:29,344 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-09 23:16:29,345 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:29,345 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-09 23:16:29,345 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-09 23:16:29,345 INFO L87 Difference]: Start difference. First operand 320 states and 405 transitions. Second operand has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 3 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-09 23:16:29,398 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:29,399 INFO L93 Difference]: Finished difference Result 728 states and 978 transitions. [2024-11-09 23:16:29,399 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-09 23:16:29,399 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 3 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 98 [2024-11-09 23:16:29,400 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:29,402 INFO L225 Difference]: With dead ends: 728 [2024-11-09 23:16:29,403 INFO L226 Difference]: Without dead ends: 462 [2024-11-09 23:16:29,404 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 119 GetRequests, 113 SyntacticMatches, 2 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2024-11-09 23:16:29,404 INFO L432 NwaCegarLoop]: 154 mSDtfsCounter, 29 mSDsluCounter, 82 mSDsCounter, 0 mSdLazyCounter, 9 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 29 SdHoareTripleChecker+Valid, 236 SdHoareTripleChecker+Invalid, 12 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 9 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:29,404 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [29 Valid, 236 Invalid, 12 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 9 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:29,405 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 462 states. [2024-11-09 23:16:29,427 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 462 to 446. [2024-11-09 23:16:29,428 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 446 states, 341 states have (on average 1.2258064516129032) internal successors, (418), 364 states have internal predecessors, (418), 55 states have call successors, (55), 44 states have call predecessors, (55), 49 states have return successors, (119), 53 states have call predecessors, (119), 55 states have call successors, (119) [2024-11-09 23:16:29,430 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 446 states to 446 states and 592 transitions. [2024-11-09 23:16:29,431 INFO L78 Accepts]: Start accepts. Automaton has 446 states and 592 transitions. Word has length 98 [2024-11-09 23:16:29,431 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:29,431 INFO L471 AbstractCegarLoop]: Abstraction has 446 states and 592 transitions. [2024-11-09 23:16:29,432 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.333333333333332) internal successors, (79), 3 states have internal predecessors, (79), 3 states have call successors, (9), 3 states have call predecessors, (9), 3 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-09 23:16:29,432 INFO L276 IsEmpty]: Start isEmpty. Operand 446 states and 592 transitions. [2024-11-09 23:16:29,433 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2024-11-09 23:16:29,433 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:29,434 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:29,446 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-09 23:16:29,634 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-09 23:16:29,635 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:29,635 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:29,635 INFO L85 PathProgramCache]: Analyzing trace with hash -248541567, now seen corresponding path program 1 times [2024-11-09 23:16:29,635 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:29,635 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [700320769] [2024-11-09 23:16:29,635 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:29,636 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:29,654 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,722 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:29,724 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,731 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:29,735 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,773 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:29,777 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,831 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:29,832 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,841 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:29,842 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,845 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 77 [2024-11-09 23:16:29,846 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,847 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:29,847 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,848 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 87 [2024-11-09 23:16:29,849 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,849 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 17 proven. 6 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-09 23:16:29,850 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:29,850 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [700320769] [2024-11-09 23:16:29,850 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [700320769] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:29,850 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [838106371] [2024-11-09 23:16:29,850 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:29,850 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:29,850 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:29,851 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:29,853 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-09 23:16:29,928 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:29,930 INFO L255 TraceCheckSpWp]: Trace formula consists of 330 conjuncts, 11 conjuncts are in the unsatisfiable core [2024-11-09 23:16:29,935 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:30,044 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 7 proven. 2 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-09 23:16:30,045 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 23:16:30,141 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 15 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-09 23:16:30,141 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [838106371] provided 1 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:30,142 INFO L185 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2024-11-09 23:16:30,142 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [12, 5] total 14 [2024-11-09 23:16:30,142 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1909270496] [2024-11-09 23:16:30,142 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:30,142 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-09 23:16:30,142 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:30,143 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-09 23:16:30,143 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=37, Invalid=145, Unknown=0, NotChecked=0, Total=182 [2024-11-09 23:16:30,143 INFO L87 Difference]: Start difference. First operand 446 states and 592 transitions. Second operand has 6 states, 6 states have (on average 11.666666666666666) internal successors, (70), 5 states have internal predecessors, (70), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-09 23:16:30,227 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:30,228 INFO L93 Difference]: Finished difference Result 1258 states and 1725 transitions. [2024-11-09 23:16:30,228 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 23:16:30,228 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 11.666666666666666) internal successors, (70), 5 states have internal predecessors, (70), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 98 [2024-11-09 23:16:30,228 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:30,232 INFO L225 Difference]: With dead ends: 1258 [2024-11-09 23:16:30,232 INFO L226 Difference]: Without dead ends: 820 [2024-11-09 23:16:30,233 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 223 GetRequests, 208 SyntacticMatches, 1 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 35 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=51, Invalid=189, Unknown=0, NotChecked=0, Total=240 [2024-11-09 23:16:30,234 INFO L432 NwaCegarLoop]: 97 mSDtfsCounter, 55 mSDsluCounter, 345 mSDsCounter, 0 mSdLazyCounter, 48 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 57 SdHoareTripleChecker+Valid, 442 SdHoareTripleChecker+Invalid, 52 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 48 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:30,234 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [57 Valid, 442 Invalid, 52 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 48 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:30,234 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 820 states. [2024-11-09 23:16:30,263 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 820 to 711. [2024-11-09 23:16:30,264 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 711 states, 537 states have (on average 1.1992551210428306) internal successors, (644), 575 states have internal predecessors, (644), 90 states have call successors, (90), 73 states have call predecessors, (90), 83 states have return successors, (188), 88 states have call predecessors, (188), 90 states have call successors, (188) [2024-11-09 23:16:30,266 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 711 states to 711 states and 922 transitions. [2024-11-09 23:16:30,267 INFO L78 Accepts]: Start accepts. Automaton has 711 states and 922 transitions. Word has length 98 [2024-11-09 23:16:30,267 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:30,267 INFO L471 AbstractCegarLoop]: Abstraction has 711 states and 922 transitions. [2024-11-09 23:16:30,268 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 11.666666666666666) internal successors, (70), 5 states have internal predecessors, (70), 2 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-09 23:16:30,268 INFO L276 IsEmpty]: Start isEmpty. Operand 711 states and 922 transitions. [2024-11-09 23:16:30,269 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 103 [2024-11-09 23:16:30,270 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:30,270 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:30,283 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-09 23:16:30,470 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:30,474 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:30,474 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:30,475 INFO L85 PathProgramCache]: Analyzing trace with hash 2133264032, now seen corresponding path program 1 times [2024-11-09 23:16:30,475 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:30,475 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1963038759] [2024-11-09 23:16:30,475 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:30,475 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:30,485 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,545 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:30,547 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,553 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 18 [2024-11-09 23:16:30,554 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,568 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-09 23:16:30,572 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,628 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:30,632 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,686 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:30,687 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,698 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:30,700 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,704 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 81 [2024-11-09 23:16:30,705 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,706 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:30,706 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,706 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 91 [2024-11-09 23:16:30,707 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,707 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 17 proven. 6 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-09 23:16:30,708 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:30,708 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1963038759] [2024-11-09 23:16:30,708 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1963038759] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:30,708 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [195459355] [2024-11-09 23:16:30,708 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:30,708 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:30,708 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:30,710 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:30,713 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-09 23:16:30,783 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:30,784 INFO L255 TraceCheckSpWp]: Trace formula consists of 340 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-09 23:16:30,788 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:30,895 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 20 proven. 0 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-09 23:16:30,895 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 23:16:30,895 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [195459355] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:30,895 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 23:16:30,895 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [16] total 21 [2024-11-09 23:16:30,896 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [788740533] [2024-11-09 23:16:30,896 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:30,896 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-09 23:16:30,896 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:30,898 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-09 23:16:30,898 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=49, Invalid=371, Unknown=0, NotChecked=0, Total=420 [2024-11-09 23:16:30,898 INFO L87 Difference]: Start difference. First operand 711 states and 922 transitions. Second operand has 7 states, 7 states have (on average 10.571428571428571) internal successors, (74), 6 states have internal predecessors, (74), 3 states have call successors, (9), 3 states have call predecessors, (9), 4 states have return successors, (8), 4 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-09 23:16:30,990 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:30,990 INFO L93 Difference]: Finished difference Result 1340 states and 1754 transitions. [2024-11-09 23:16:30,991 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-09 23:16:30,991 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 10.571428571428571) internal successors, (74), 6 states have internal predecessors, (74), 3 states have call successors, (9), 3 states have call predecessors, (9), 4 states have return successors, (8), 4 states have call predecessors, (8), 3 states have call successors, (8) Word has length 102 [2024-11-09 23:16:30,991 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:30,994 INFO L225 Difference]: With dead ends: 1340 [2024-11-09 23:16:30,994 INFO L226 Difference]: Without dead ends: 637 [2024-11-09 23:16:30,995 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 130 GetRequests, 111 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 44 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=49, Invalid=371, Unknown=0, NotChecked=0, Total=420 [2024-11-09 23:16:30,996 INFO L432 NwaCegarLoop]: 172 mSDtfsCounter, 63 mSDsluCounter, 334 mSDsCounter, 0 mSdLazyCounter, 108 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 64 SdHoareTripleChecker+Valid, 506 SdHoareTripleChecker+Invalid, 109 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 108 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:30,996 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [64 Valid, 506 Invalid, 109 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 108 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-09 23:16:30,997 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 637 states. [2024-11-09 23:16:31,020 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 637 to 629. [2024-11-09 23:16:31,021 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 629 states, 475 states have (on average 1.1810526315789474) internal successors, (561), 507 states have internal predecessors, (561), 82 states have call successors, (82), 67 states have call predecessors, (82), 71 states have return successors, (143), 76 states have call predecessors, (143), 82 states have call successors, (143) [2024-11-09 23:16:31,023 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 629 states to 629 states and 786 transitions. [2024-11-09 23:16:31,024 INFO L78 Accepts]: Start accepts. Automaton has 629 states and 786 transitions. Word has length 102 [2024-11-09 23:16:31,024 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:31,024 INFO L471 AbstractCegarLoop]: Abstraction has 629 states and 786 transitions. [2024-11-09 23:16:31,024 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 10.571428571428571) internal successors, (74), 6 states have internal predecessors, (74), 3 states have call successors, (9), 3 states have call predecessors, (9), 4 states have return successors, (8), 4 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-09 23:16:31,025 INFO L276 IsEmpty]: Start isEmpty. Operand 629 states and 786 transitions. [2024-11-09 23:16:31,027 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 145 [2024-11-09 23:16:31,027 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:31,027 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:31,039 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-09 23:16:31,231 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:31,232 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:31,232 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:31,232 INFO L85 PathProgramCache]: Analyzing trace with hash 563141232, now seen corresponding path program 1 times [2024-11-09 23:16:31,232 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:31,232 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1618199425] [2024-11-09 23:16:31,232 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:31,232 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:31,249 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,385 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:31,386 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,397 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:31,400 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,416 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:31,419 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,423 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:31,423 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,424 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:31,425 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,430 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 61 [2024-11-09 23:16:31,431 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,432 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 67 [2024-11-09 23:16:31,435 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,486 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-11-09 23:16:31,487 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,489 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:31,489 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,490 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:31,491 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,492 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 104 [2024-11-09 23:16:31,493 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,505 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 123 [2024-11-09 23:16:31,506 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,507 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:31,508 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,509 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 133 [2024-11-09 23:16:31,509 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,510 INFO L134 CoverageAnalysis]: Checked inductivity of 102 backedges. 41 proven. 21 refuted. 0 times theorem prover too weak. 40 trivial. 0 not checked. [2024-11-09 23:16:31,510 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:31,510 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1618199425] [2024-11-09 23:16:31,510 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1618199425] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:31,511 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1932591839] [2024-11-09 23:16:31,511 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:31,511 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:31,511 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:31,512 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:31,514 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-09 23:16:31,614 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:31,616 INFO L255 TraceCheckSpWp]: Trace formula consists of 439 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-11-09 23:16:31,619 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:31,722 INFO L134 CoverageAnalysis]: Checked inductivity of 102 backedges. 73 proven. 4 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2024-11-09 23:16:31,722 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 23:16:32,023 INFO L134 CoverageAnalysis]: Checked inductivity of 102 backedges. 53 proven. 4 refuted. 0 times theorem prover too weak. 45 trivial. 0 not checked. [2024-11-09 23:16:32,024 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1932591839] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 23:16:32,024 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 23:16:32,024 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 9] total 18 [2024-11-09 23:16:32,024 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2000387457] [2024-11-09 23:16:32,024 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 23:16:32,025 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2024-11-09 23:16:32,025 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:32,026 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2024-11-09 23:16:32,026 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=82, Invalid=224, Unknown=0, NotChecked=0, Total=306 [2024-11-09 23:16:32,026 INFO L87 Difference]: Start difference. First operand 629 states and 786 transitions. Second operand has 18 states, 18 states have (on average 9.11111111111111) internal successors, (164), 14 states have internal predecessors, (164), 10 states have call successors, (30), 10 states have call predecessors, (30), 12 states have return successors, (29), 9 states have call predecessors, (29), 10 states have call successors, (29) [2024-11-09 23:16:32,664 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:32,664 INFO L93 Difference]: Finished difference Result 1250 states and 1631 transitions. [2024-11-09 23:16:32,665 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2024-11-09 23:16:32,665 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 18 states have (on average 9.11111111111111) internal successors, (164), 14 states have internal predecessors, (164), 10 states have call successors, (30), 10 states have call predecessors, (30), 12 states have return successors, (29), 9 states have call predecessors, (29), 10 states have call successors, (29) Word has length 144 [2024-11-09 23:16:32,665 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:32,668 INFO L225 Difference]: With dead ends: 1250 [2024-11-09 23:16:32,668 INFO L226 Difference]: Without dead ends: 719 [2024-11-09 23:16:32,670 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 343 GetRequests, 307 SyntacticMatches, 5 SemanticMatches, 31 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 196 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=306, Invalid=750, Unknown=0, NotChecked=0, Total=1056 [2024-11-09 23:16:32,671 INFO L432 NwaCegarLoop]: 23 mSDtfsCounter, 814 mSDsluCounter, 132 mSDsCounter, 0 mSdLazyCounter, 662 mSolverCounterSat, 251 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 816 SdHoareTripleChecker+Valid, 155 SdHoareTripleChecker+Invalid, 913 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 251 IncrementalHoareTripleChecker+Valid, 662 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:32,671 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [816 Valid, 155 Invalid, 913 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [251 Valid, 662 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-09 23:16:32,672 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 719 states. [2024-11-09 23:16:32,701 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 719 to 691. [2024-11-09 23:16:32,702 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 691 states, 524 states have (on average 1.1812977099236641) internal successors, (619), 555 states have internal predecessors, (619), 92 states have call successors, (92), 74 states have call predecessors, (92), 74 states have return successors, (149), 80 states have call predecessors, (149), 92 states have call successors, (149) [2024-11-09 23:16:32,705 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 691 states to 691 states and 860 transitions. [2024-11-09 23:16:32,706 INFO L78 Accepts]: Start accepts. Automaton has 691 states and 860 transitions. Word has length 144 [2024-11-09 23:16:32,706 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:32,706 INFO L471 AbstractCegarLoop]: Abstraction has 691 states and 860 transitions. [2024-11-09 23:16:32,706 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 18 states have (on average 9.11111111111111) internal successors, (164), 14 states have internal predecessors, (164), 10 states have call successors, (30), 10 states have call predecessors, (30), 12 states have return successors, (29), 9 states have call predecessors, (29), 10 states have call successors, (29) [2024-11-09 23:16:32,706 INFO L276 IsEmpty]: Start isEmpty. Operand 691 states and 860 transitions. [2024-11-09 23:16:32,720 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 145 [2024-11-09 23:16:32,720 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:32,720 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:32,733 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-09 23:16:32,920 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2024-11-09 23:16:32,921 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:32,922 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:32,922 INFO L85 PathProgramCache]: Analyzing trace with hash 1497140942, now seen corresponding path program 1 times [2024-11-09 23:16:32,922 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:32,922 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [153727365] [2024-11-09 23:16:32,922 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:32,922 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:32,934 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,035 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:33,036 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,042 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:33,045 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,055 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:33,058 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,064 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:33,064 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,065 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:33,066 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,070 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 61 [2024-11-09 23:16:33,071 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,072 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 67 [2024-11-09 23:16:33,075 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,103 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-11-09 23:16:33,104 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,105 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:33,106 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,106 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:33,107 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,107 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 104 [2024-11-09 23:16:33,108 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,119 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 123 [2024-11-09 23:16:33,120 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,121 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:33,121 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,122 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 133 [2024-11-09 23:16:33,122 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,123 INFO L134 CoverageAnalysis]: Checked inductivity of 102 backedges. 47 proven. 19 refuted. 0 times theorem prover too weak. 36 trivial. 0 not checked. [2024-11-09 23:16:33,123 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:33,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [153727365] [2024-11-09 23:16:33,123 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [153727365] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:33,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [760387579] [2024-11-09 23:16:33,123 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:33,123 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:33,123 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:33,125 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:33,126 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-09 23:16:33,209 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:33,212 INFO L255 TraceCheckSpWp]: Trace formula consists of 439 conjuncts, 10 conjuncts are in the unsatisfiable core [2024-11-09 23:16:33,215 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:33,298 INFO L134 CoverageAnalysis]: Checked inductivity of 102 backedges. 70 proven. 22 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2024-11-09 23:16:33,298 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 23:16:33,538 INFO L134 CoverageAnalysis]: Checked inductivity of 102 backedges. 52 proven. 16 refuted. 0 times theorem prover too weak. 34 trivial. 0 not checked. [2024-11-09 23:16:33,538 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [760387579] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 23:16:33,538 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 23:16:33,539 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 7, 8] total 16 [2024-11-09 23:16:33,539 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [943337323] [2024-11-09 23:16:33,539 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 23:16:33,539 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 16 states [2024-11-09 23:16:33,540 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:33,540 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 16 interpolants. [2024-11-09 23:16:33,541 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=70, Invalid=170, Unknown=0, NotChecked=0, Total=240 [2024-11-09 23:16:33,541 INFO L87 Difference]: Start difference. First operand 691 states and 860 transitions. Second operand has 16 states, 16 states have (on average 10.5625) internal successors, (169), 12 states have internal predecessors, (169), 7 states have call successors, (35), 11 states have call predecessors, (35), 8 states have return successors, (28), 7 states have call predecessors, (28), 7 states have call successors, (28) [2024-11-09 23:16:34,253 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:34,253 INFO L93 Difference]: Finished difference Result 1684 states and 2151 transitions. [2024-11-09 23:16:34,253 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-11-09 23:16:34,254 INFO L78 Accepts]: Start accepts. Automaton has has 16 states, 16 states have (on average 10.5625) internal successors, (169), 12 states have internal predecessors, (169), 7 states have call successors, (35), 11 states have call predecessors, (35), 8 states have return successors, (28), 7 states have call predecessors, (28), 7 states have call successors, (28) Word has length 144 [2024-11-09 23:16:34,254 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:34,259 INFO L225 Difference]: With dead ends: 1684 [2024-11-09 23:16:34,259 INFO L226 Difference]: Without dead ends: 1087 [2024-11-09 23:16:34,262 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 350 GetRequests, 313 SyntacticMatches, 5 SemanticMatches, 32 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 214 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=360, Invalid=762, Unknown=0, NotChecked=0, Total=1122 [2024-11-09 23:16:34,262 INFO L432 NwaCegarLoop]: 38 mSDtfsCounter, 556 mSDsluCounter, 179 mSDsCounter, 0 mSdLazyCounter, 750 mSolverCounterSat, 173 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 557 SdHoareTripleChecker+Valid, 217 SdHoareTripleChecker+Invalid, 923 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 173 IncrementalHoareTripleChecker+Valid, 750 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:34,262 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [557 Valid, 217 Invalid, 923 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [173 Valid, 750 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-09 23:16:34,263 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1087 states. [2024-11-09 23:16:34,321 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1087 to 993. [2024-11-09 23:16:34,322 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 993 states, 749 states have (on average 1.1815754339118825) internal successors, (885), 795 states have internal predecessors, (885), 133 states have call successors, (133), 110 states have call predecessors, (133), 110 states have return successors, (196), 112 states have call predecessors, (196), 133 states have call successors, (196) [2024-11-09 23:16:34,325 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 993 states to 993 states and 1214 transitions. [2024-11-09 23:16:34,326 INFO L78 Accepts]: Start accepts. Automaton has 993 states and 1214 transitions. Word has length 144 [2024-11-09 23:16:34,326 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:34,326 INFO L471 AbstractCegarLoop]: Abstraction has 993 states and 1214 transitions. [2024-11-09 23:16:34,327 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 16 states, 16 states have (on average 10.5625) internal successors, (169), 12 states have internal predecessors, (169), 7 states have call successors, (35), 11 states have call predecessors, (35), 8 states have return successors, (28), 7 states have call predecessors, (28), 7 states have call successors, (28) [2024-11-09 23:16:34,327 INFO L276 IsEmpty]: Start isEmpty. Operand 993 states and 1214 transitions. [2024-11-09 23:16:34,329 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 141 [2024-11-09 23:16:34,329 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:34,329 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:34,343 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-11-09 23:16:34,533 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13,7 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:34,534 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:34,534 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:34,534 INFO L85 PathProgramCache]: Analyzing trace with hash -1119339759, now seen corresponding path program 1 times [2024-11-09 23:16:34,535 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:34,535 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1372312345] [2024-11-09 23:16:34,535 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:34,535 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:34,546 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,631 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:34,631 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,637 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:34,640 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,651 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:34,654 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,661 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:34,661 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,662 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:34,663 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,667 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 61 [2024-11-09 23:16:34,668 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,669 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 67 [2024-11-09 23:16:34,672 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,742 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-11-09 23:16:34,743 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,744 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:34,744 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,745 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:34,745 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,746 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 119 [2024-11-09 23:16:34,747 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,747 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:34,748 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,748 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 129 [2024-11-09 23:16:34,748 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,749 INFO L134 CoverageAnalysis]: Checked inductivity of 98 backedges. 56 proven. 12 refuted. 0 times theorem prover too weak. 30 trivial. 0 not checked. [2024-11-09 23:16:34,749 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:34,749 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1372312345] [2024-11-09 23:16:34,749 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1372312345] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:34,750 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [739521662] [2024-11-09 23:16:34,750 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:34,750 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:34,750 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:34,751 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:34,753 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-11-09 23:16:34,834 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:34,837 INFO L255 TraceCheckSpWp]: Trace formula consists of 432 conjuncts, 11 conjuncts are in the unsatisfiable core [2024-11-09 23:16:34,839 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:35,011 INFO L134 CoverageAnalysis]: Checked inductivity of 98 backedges. 79 proven. 16 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-09 23:16:35,011 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-09 23:16:35,207 INFO L134 CoverageAnalysis]: Checked inductivity of 98 backedges. 57 proven. 12 refuted. 0 times theorem prover too weak. 29 trivial. 0 not checked. [2024-11-09 23:16:35,208 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [739521662] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-09 23:16:35,208 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-09 23:16:35,208 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 9, 8] total 20 [2024-11-09 23:16:35,208 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2114725120] [2024-11-09 23:16:35,208 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-09 23:16:35,209 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 20 states [2024-11-09 23:16:35,209 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:35,210 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 20 interpolants. [2024-11-09 23:16:35,210 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=75, Invalid=305, Unknown=0, NotChecked=0, Total=380 [2024-11-09 23:16:35,211 INFO L87 Difference]: Start difference. First operand 993 states and 1214 transitions. Second operand has 20 states, 20 states have (on average 7.3) internal successors, (146), 17 states have internal predecessors, (146), 6 states have call successors, (30), 10 states have call predecessors, (30), 6 states have return successors, (22), 6 states have call predecessors, (22), 6 states have call successors, (22) [2024-11-09 23:16:36,341 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:36,341 INFO L93 Difference]: Finished difference Result 2729 states and 3448 transitions. [2024-11-09 23:16:36,341 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-11-09 23:16:36,342 INFO L78 Accepts]: Start accepts. Automaton has has 20 states, 20 states have (on average 7.3) internal successors, (146), 17 states have internal predecessors, (146), 6 states have call successors, (30), 10 states have call predecessors, (30), 6 states have return successors, (22), 6 states have call predecessors, (22), 6 states have call successors, (22) Word has length 140 [2024-11-09 23:16:36,342 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:36,349 INFO L225 Difference]: With dead ends: 2729 [2024-11-09 23:16:36,349 INFO L226 Difference]: Without dead ends: 1827 [2024-11-09 23:16:36,352 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 345 GetRequests, 299 SyntacticMatches, 4 SemanticMatches, 42 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 409 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=470, Invalid=1422, Unknown=0, NotChecked=0, Total=1892 [2024-11-09 23:16:36,353 INFO L432 NwaCegarLoop]: 55 mSDtfsCounter, 526 mSDsluCounter, 397 mSDsCounter, 0 mSdLazyCounter, 1630 mSolverCounterSat, 177 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 528 SdHoareTripleChecker+Valid, 452 SdHoareTripleChecker+Invalid, 1807 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 177 IncrementalHoareTripleChecker+Valid, 1630 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:36,353 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [528 Valid, 452 Invalid, 1807 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [177 Valid, 1630 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-11-09 23:16:36,354 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1827 states. [2024-11-09 23:16:36,440 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1827 to 1595. [2024-11-09 23:16:36,442 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1595 states, 1200 states have (on average 1.1741666666666666) internal successors, (1409), 1264 states have internal predecessors, (1409), 205 states have call successors, (205), 178 states have call predecessors, (205), 189 states have return successors, (334), 183 states have call predecessors, (334), 205 states have call successors, (334) [2024-11-09 23:16:36,448 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1595 states to 1595 states and 1948 transitions. [2024-11-09 23:16:36,450 INFO L78 Accepts]: Start accepts. Automaton has 1595 states and 1948 transitions. Word has length 140 [2024-11-09 23:16:36,451 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:36,451 INFO L471 AbstractCegarLoop]: Abstraction has 1595 states and 1948 transitions. [2024-11-09 23:16:36,451 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 20 states, 20 states have (on average 7.3) internal successors, (146), 17 states have internal predecessors, (146), 6 states have call successors, (30), 10 states have call predecessors, (30), 6 states have return successors, (22), 6 states have call predecessors, (22), 6 states have call successors, (22) [2024-11-09 23:16:36,451 INFO L276 IsEmpty]: Start isEmpty. Operand 1595 states and 1948 transitions. [2024-11-09 23:16:36,455 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 141 [2024-11-09 23:16:36,456 INFO L207 NwaCegarLoop]: Found error trace [2024-11-09 23:16:36,456 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:36,469 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2024-11-09 23:16:36,659 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14,8 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:36,660 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-09 23:16:36,660 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-09 23:16:36,660 INFO L85 PathProgramCache]: Analyzing trace with hash 662160176, now seen corresponding path program 1 times [2024-11-09 23:16:36,660 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-09 23:16:36,660 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1746418635] [2024-11-09 23:16:36,660 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:36,661 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-09 23:16:36,674 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,732 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 12 [2024-11-09 23:16:36,733 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,740 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:36,742 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,749 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-09 23:16:36,751 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,752 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-09 23:16:36,753 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,753 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-09 23:16:36,754 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,758 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 61 [2024-11-09 23:16:36,759 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,760 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 67 [2024-11-09 23:16:36,767 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,792 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 10 [2024-11-09 23:16:36,793 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,794 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:36,795 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,795 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-09 23:16:36,795 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,796 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 119 [2024-11-09 23:16:36,797 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,797 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-09 23:16:36,798 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,799 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 129 [2024-11-09 23:16:36,799 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,800 INFO L134 CoverageAnalysis]: Checked inductivity of 98 backedges. 44 proven. 9 refuted. 0 times theorem prover too weak. 45 trivial. 0 not checked. [2024-11-09 23:16:36,800 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-09 23:16:36,800 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1746418635] [2024-11-09 23:16:36,800 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1746418635] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-09 23:16:36,800 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1184898060] [2024-11-09 23:16:36,800 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-09 23:16:36,801 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-09 23:16:36,801 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-09 23:16:36,802 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-09 23:16:36,803 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-11-09 23:16:36,888 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-09 23:16:36,889 INFO L255 TraceCheckSpWp]: Trace formula consists of 433 conjuncts, 5 conjuncts are in the unsatisfiable core [2024-11-09 23:16:36,891 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-09 23:16:36,900 INFO L134 CoverageAnalysis]: Checked inductivity of 98 backedges. 64 proven. 0 refuted. 0 times theorem prover too weak. 34 trivial. 0 not checked. [2024-11-09 23:16:36,903 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-09 23:16:36,903 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1184898060] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-09 23:16:36,903 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-09 23:16:36,903 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [10] total 10 [2024-11-09 23:16:36,903 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1739498520] [2024-11-09 23:16:36,903 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-09 23:16:36,904 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-09 23:16:36,904 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-09 23:16:36,904 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-09 23:16:36,906 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=19, Invalid=71, Unknown=0, NotChecked=0, Total=90 [2024-11-09 23:16:36,906 INFO L87 Difference]: Start difference. First operand 1595 states and 1948 transitions. Second operand has 5 states, 5 states have (on average 18.4) internal successors, (92), 5 states have internal predecessors, (92), 2 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) [2024-11-09 23:16:36,944 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-09 23:16:36,945 INFO L93 Difference]: Finished difference Result 1988 states and 2385 transitions. [2024-11-09 23:16:36,945 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-09 23:16:36,945 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 18.4) internal successors, (92), 5 states have internal predecessors, (92), 2 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) Word has length 140 [2024-11-09 23:16:36,945 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-09 23:16:36,947 INFO L225 Difference]: With dead ends: 1988 [2024-11-09 23:16:36,947 INFO L226 Difference]: Without dead ends: 0 [2024-11-09 23:16:36,950 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 172 GetRequests, 164 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 9 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=19, Invalid=71, Unknown=0, NotChecked=0, Total=90 [2024-11-09 23:16:36,950 INFO L432 NwaCegarLoop]: 95 mSDtfsCounter, 0 mSDsluCounter, 272 mSDsCounter, 0 mSdLazyCounter, 22 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 367 SdHoareTripleChecker+Invalid, 22 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 22 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-09 23:16:36,951 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 367 Invalid, 22 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 22 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-09 23:16:36,952 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-09 23:16:36,952 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-09 23:16:36,952 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-09 23:16:36,952 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-09 23:16:36,954 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 140 [2024-11-09 23:16:36,954 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-09 23:16:36,954 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-09 23:16:36,954 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 18.4) internal successors, (92), 5 states have internal predecessors, (92), 2 states have call successors, (10), 2 states have call predecessors, (10), 2 states have return successors, (10), 2 states have call predecessors, (10), 2 states have call successors, (10) [2024-11-09 23:16:36,954 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-09 23:16:36,954 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-09 23:16:36,956 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-09 23:16:36,971 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Forceful destruction successful, exit code 0 [2024-11-09 23:16:37,160 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 9 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2024-11-09 23:16:37,163 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-09 23:16:37,165 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-09 23:16:40,828 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-09 23:16:40,836 WARN L156 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (= ~pumpRunning~0 |old(~pumpRunning~0)|) (= 1 ~systemActive~0)) Eliminated clause: (= 1 ~systemActive~0) [2024-11-09 23:16:40,856 WARN L156 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= 1 ~systemActive~0))) (and (or (not .cse0) (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0)) (let ((.cse3 (<= 1 |old(~methaneLevelCritical~0)|)) (.cse5 (<= 2 ~waterLevel~0)) (.cse6 (<= ~waterLevel~0 2)) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= ~methAndRunningLastTime~0 0)) (.cse4 (= |old(~methaneLevelCritical~0)| 0))) (or (and .cse1 .cse2 (<= ~waterLevel~0 1) .cse3 .cse0 (<= 1 ~waterLevel~0)) (and .cse2 .cse4 .cse5 .cse0 .cse6) (and .cse1 .cse2 .cse3 .cse5 .cse0 .cse6) (and .cse1 .cse2 (= 0 ~systemActive~0)) (and .cse1 .cse2 .cse4 .cse0 (= ~waterLevel~0 1)))))) Eliminated clause: (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse4 (= 1 ~systemActive~0))) (and (let ((.cse3 (<= 1 |old(~methaneLevelCritical~0)|)) (.cse2 (= 2 ~waterLevel~0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= ~methAndRunningLastTime~0 0)) (.cse6 (= |old(~methaneLevelCritical~0)| 0)) (.cse5 (= ~waterLevel~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse0 .cse1 .cse3 .cse4 .cse5) (and .cse0 .cse1 (= 0 ~systemActive~0)) (and .cse1 .cse2 .cse6 .cse4) (and .cse0 .cse1 .cse6 .cse4 .cse5))) (or (not .cse4) (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0))))) [2024-11-09 23:16:40,864 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 23:16:40,888 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse0 (= |old(~methAndRunningLastTime~0)| 0)) (.cse2 (= 1 ~systemActive~0)) (.cse7 (= 0 ~systemActive~0))) (and (or (not .cse0) (= ~methAndRunningLastTime~0 0)) (= ~pumpRunning~0 |old(~pumpRunning~0)|) (let ((.cse1 (<= 1 ~methaneLevelCritical~0)) (.cse4 (<= 2 |old(~waterLevel~0)|)) (.cse5 (<= |old(~waterLevel~0)| 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse3 (= |old(~pumpRunning~0)| 0))) (or (and .cse1 (= |old(~waterLevel~0)| 1) .cse0 .cse2 .cse3) (and .cse1 .cse0 .cse2 .cse4 .cse5) (and .cse6 .cse2 .cse4 .cse5) (and .cse6 .cse0 .cse2 .cse3 (<= 1 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| 1)) .cse7)) (or (not .cse2) (= |old(~methAndRunningLastTime~0)| ~methAndRunningLastTime~0)) (or (= ~pumpRunning~0 0) (not .cse7)) (= |old(~waterLevel~0)| ~waterLevel~0))) Eliminated clause: (let ((.cse2 (= ~pumpRunning~0 0)) (.cse7 (= 0 ~systemActive~0))) (and (exists ((|old(~methAndRunningLastTime~0)| Int)) (let ((.cse0 (= |old(~methAndRunningLastTime~0)| 0)) (.cse1 (= 1 ~systemActive~0))) (and (or (not .cse0) (= ~methAndRunningLastTime~0 0)) (or (not .cse1) (= |old(~methAndRunningLastTime~0)| ~methAndRunningLastTime~0)) (let ((.cse6 (= 2 ~waterLevel~0)) (.cse3 (= ~methaneLevelCritical~0 0)) (.cse5 (<= 1 ~methaneLevelCritical~0)) (.cse4 (= ~waterLevel~0 1))) (or (and .cse2 .cse3 .cse0 .cse1 .cse4) (and .cse5 .cse6 .cse0 .cse1) .cse7 (and .cse6 .cse3 .cse1) (and .cse2 .cse5 .cse0 .cse1 .cse4)))))) (or .cse2 (not .cse7)))) [2024-11-09 23:16:40,900 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-09 23:16:40,907 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (<= 1 ~methaneLevelCritical~0)) (.cse6 (<= ~waterLevel~0 1)) (.cse7 (<= 1 ~waterLevel~0)) (.cse8 (= ~methaneLevelCritical~0 0)) (.cse2 (<= 2 ~waterLevel~0)) (.cse3 (= 1 ~systemActive~0)) (.cse4 (= |old(~pumpRunning~0)| 0)) (.cse5 (<= ~waterLevel~0 2))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse0 .cse1 .cse6 .cse3 .cse4 .cse7) (and .cse8 .cse6 .cse3 .cse4 .cse7) (and .cse8 .cse2 .cse3 .cse4 .cse5)))) Eliminated clause: (and (= ~pumpRunning~0 0) (let ((.cse0 (= ~methAndRunningLastTime~0 0)) (.cse1 (<= 1 ~methaneLevelCritical~0)) (.cse5 (= ~waterLevel~0 1)) (.cse2 (= 2 ~waterLevel~0)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse3 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse3 .cse5) (and .cse0 .cse1 .cse3 .cse5) (and .cse2 .cse4 .cse3)))) [2024-11-09 23:16:40,917 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse2 (<= 1 ~methaneLevelCritical~0)) (.cse4 (<= 2 |old(~waterLevel~0)|)) (.cse5 (<= |old(~waterLevel~0)| 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse3 (= 1 ~systemActive~0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= ~methAndRunningLastTime~0 0))) (or (and .cse0 .cse1 .cse2 .cse3 (<= 1 |old(~waterLevel~0)|) (<= |old(~waterLevel~0)| 1)) (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse1 .cse6 .cse3 .cse4 .cse5) (and .cse0 .cse1 (= |old(~waterLevel~0)| 1) .cse6 .cse3) (and .cse0 .cse1 (= 0 ~systemActive~0)))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse5 (<= 1 ~methaneLevelCritical~0)) (.cse1 (= 2 ~waterLevel~0)) (.cse4 (= ~pumpRunning~0 0)) (.cse0 (= ~methAndRunningLastTime~0 0)) (.cse2 (= ~methaneLevelCritical~0 0)) (.cse3 (= 1 ~systemActive~0)) (.cse6 (= ~waterLevel~0 1))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse0 .cse5 .cse3 .cse6) (and .cse4 .cse0 .cse5 .cse1 .cse3) (and .cse4 .cse0 (= 0 ~systemActive~0)) (and .cse4 .cse0 .cse2 .cse3 .cse6))) [2024-11-09 23:16:40,922 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 09.11 11:16:40 BoogieIcfgContainer [2024-11-09 23:16:40,922 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-09 23:16:40,923 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-09 23:16:40,923 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-09 23:16:40,923 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-09 23:16:40,923 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.icfgbuilder CFG 09.11 11:16:26" (3/4) ... [2024-11-09 23:16:40,925 INFO L143 WitnessPrinter]: Generating witness for correct program [2024-11-09 23:16:40,928 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-09 23:16:40,928 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-09 23:16:40,928 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-09 23:16:40,928 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-09 23:16:40,928 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-09 23:16:40,928 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-09 23:16:40,929 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-09 23:16:40,929 INFO L393 IcfgBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-09 23:16:40,936 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 41 nodes and edges [2024-11-09 23:16:40,937 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 10 nodes and edges [2024-11-09 23:16:40,937 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-09 23:16:40,937 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 23:16:40,937 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-09 23:16:41,023 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-09 23:16:41,023 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-09 23:16:41,024 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-09 23:16:41,024 INFO L158 Benchmark]: Toolchain (without parser) took 15749.49ms. Allocated memory was 155.2MB in the beginning and 390.1MB in the end (delta: 234.9MB). Free memory was 76.7MB in the beginning and 252.0MB in the end (delta: -175.2MB). Peak memory consumption was 61.0MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,024 INFO L158 Benchmark]: CDTParser took 0.15ms. Allocated memory is still 155.2MB. Free memory is still 123.8MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-09 23:16:41,025 INFO L158 Benchmark]: CACSL2BoogieTranslator took 392.38ms. Allocated memory is still 155.2MB. Free memory was 76.5MB in the beginning and 112.6MB in the end (delta: -36.1MB). Peak memory consumption was 14.9MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,025 INFO L158 Benchmark]: Boogie Procedure Inliner took 45.80ms. Allocated memory is still 155.2MB. Free memory was 112.6MB in the beginning and 110.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,025 INFO L158 Benchmark]: Boogie Preprocessor took 49.28ms. Allocated memory is still 155.2MB. Free memory was 110.6MB in the beginning and 108.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,025 INFO L158 Benchmark]: IcfgBuilder took 412.88ms. Allocated memory is still 155.2MB. Free memory was 108.5MB in the beginning and 107.2MB in the end (delta: 1.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,026 INFO L158 Benchmark]: TraceAbstraction took 14743.71ms. Allocated memory was 155.2MB in the beginning and 390.1MB in the end (delta: 234.9MB). Free memory was 107.2MB in the beginning and 260.4MB in the end (delta: -153.2MB). Peak memory consumption was 226.2MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,026 INFO L158 Benchmark]: Witness Printer took 100.96ms. Allocated memory is still 390.1MB. Free memory was 260.4MB in the beginning and 252.0MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-09 23:16:41,029 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.15ms. Allocated memory is still 155.2MB. Free memory is still 123.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 392.38ms. Allocated memory is still 155.2MB. Free memory was 76.5MB in the beginning and 112.6MB in the end (delta: -36.1MB). Peak memory consumption was 14.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 45.80ms. Allocated memory is still 155.2MB. Free memory was 112.6MB in the beginning and 110.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 49.28ms. Allocated memory is still 155.2MB. Free memory was 110.6MB in the beginning and 108.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * IcfgBuilder took 412.88ms. Allocated memory is still 155.2MB. Free memory was 108.5MB in the beginning and 107.2MB in the end (delta: 1.3MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * TraceAbstraction took 14743.71ms. Allocated memory was 155.2MB in the beginning and 390.1MB in the end (delta: 234.9MB). Free memory was 107.2MB in the beginning and 260.4MB in the end (delta: -153.2MB). Peak memory consumption was 226.2MB. Max. memory is 16.1GB. * Witness Printer took 100.96ms. Allocated memory is still 390.1MB. Free memory was 260.4MB in the beginning and 252.0MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [49] - GenericResultAtLocation [Line: 58]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [58] - GenericResultAtLocation [Line: 300]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [300] - GenericResultAtLocation [Line: 370]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [370] - GenericResultAtLocation [Line: 409]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [409] - GenericResultAtLocation [Line: 509]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [509] - GenericResultAtLocation [Line: 544]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [544] - GenericResultAtLocation [Line: 910]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [910] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 54]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 104 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 10.9s, OverallIterations: 16, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 3.8s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3024 SdHoareTripleChecker+Valid, 2.4s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2990 mSDsluCounter, 4874 SdHoareTripleChecker+Invalid, 1.9s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3303 mSDsCounter, 839 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3810 IncrementalHoareTripleChecker+Invalid, 4649 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 839 mSolverCounterUnsat, 1571 mSDtfsCounter, 3810 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1882 GetRequests, 1667 SyntacticMatches, 17 SemanticMatches, 198 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 944 ImplicationChecksByTransitivity, 1.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1595occurred in iteration=15, InterpolantAutomatonStates: 142, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.5s AutomataMinimizationTime, 16 MinimizatonAttempts, 712 StatesRemovedByMinimization, 12 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 3.8s InterpolantComputationTime, 2244 NumberOfCodeBlocks, 2244 NumberOfCodeBlocksAsserted, 24 NumberOfCheckSat, 2742 ConstructedInterpolants, 0 QuantifiedInterpolants, 5827 SizeOfPredicates, 3 NumberOfNonLiveVariables, 3044 ConjunctsInSsa, 64 ConjunctsInUnsatCore, 28 InterpolantComputations, 13 PerfectInterpolantSequences, 1243/1399 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 421]: Location Invariant Derived location invariant: null - InvariantResult [Line: 314]: Location Invariant Derived location invariant: null - ProcedureContractResult [Line: 183]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (1 == systemActive) Ensures: (((pumpRunning == 0) && (1 == systemActive)) && ((((((systemActive == \old(systemActive)) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 98]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (methaneLevelCritical == 0)) && (1 == systemActive))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (methaneLevelCritical == 0)) && (1 == systemActive))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 938]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Ensures: ((((((((((((methAndRunningLastTime == 0) && (1 <= \old(methaneLevelCritical))) && (1 == systemActive)) && (waterLevel == 1)) || ((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (1 <= \old(methaneLevelCritical))) && (1 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || ((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (\old(methaneLevelCritical) == 0)) && (1 == systemActive))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (\old(methaneLevelCritical) == 0)) && (1 == systemActive)) && (waterLevel == 1))) && ((pumpRunning == 0) || (\old(methaneLevelCritical) < 1))) && (((methaneLevelCritical == 0) || (1 != systemActive)) || (\old(methaneLevelCritical) < 1))) && (((\old(methaneLevelCritical) != 0) || (1 != systemActive)) || (0 < methaneLevelCritical))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel)))) - ProcedureContractResult [Line: 411]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 950]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: ((((((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (waterLevel == 1))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: ((((((1 != systemActive) || (methaneLevelCritical != 0)) || (\result == 0)) && ((((((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (waterLevel == 1))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive)))) && ((1 != systemActive) || (methaneLevelCritical < ((long long) \result + 1)))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 74]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: ((pumpRunning == 0) || (0 != systemActive)) Ensures: (((((((((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (waterLevel == 1)) || (1 != systemActive)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (\old(waterLevel) == 2))) || (methaneLevelCritical != 0)) && (((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (2 == waterLevel)) && (\old(pumpRunning) == 0)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (waterLevel == 1))) || (1 != systemActive)) || (methaneLevelCritical < 1))) && (((((\old(pumpRunning) != 0) || (1 != systemActive)) || (\old(waterLevel) < 2)) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (2 == waterLevel))) || (methaneLevelCritical < 1))) && (((1 < \old(waterLevel)) || (1 != systemActive)) || (waterLevel == 1))) && (((((((((1 <= methaneLevelCritical) && (\old(waterLevel) == 1)) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive)) && (\old(pumpRunning) == 0)) || ((((1 <= methaneLevelCritical) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive)) && (\old(waterLevel) == 2))) || (((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(waterLevel) == 2))) || (0 == systemActive)) || (((((methaneLevelCritical == 0) && (\old(methAndRunningLastTime) == 0)) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (1 <= \old(waterLevel))))) && ((((((\old(pumpRunning) != 0) || (\old(methAndRunningLastTime) != 0)) || (1 != systemActive)) || (((methAndRunningLastTime == 0) && (2 == waterLevel)) && (\old(waterLevel) == 2))) || (\old(waterLevel) < 2)) || (methaneLevelCritical != 0))) && (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == waterLevel)) || (0 != systemActive))) && ((((systemActive == \old(systemActive)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 106]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((pumpRunning == 0) && (((((((methAndRunningLastTime == 0) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive)) || (((methaneLevelCritical == 0) && (1 == systemActive)) && (waterLevel == 1))) || ((((methAndRunningLastTime == 0) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (waterLevel == 1))) || (((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)))) Ensures: ((((((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (\old(pumpRunning) == 0)) || ((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (waterLevel == 1))) || (((((methAndRunningLastTime == 0) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (waterLevel == 1))) || (((((methAndRunningLastTime == 0) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive)) && (\old(pumpRunning) == 0))) && ((pumpRunning == 0) || (methaneLevelCritical < 1))) && ((pumpRunning == 0) || (1 < waterLevel))) && ((((((systemActive == \old(systemActive)) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 926]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((((((((methAndRunningLastTime == 0) && (2 == waterLevel)) && (methaneLevelCritical == 0)) && (1 == systemActive)) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (waterLevel == 1))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (2 == waterLevel)) && (1 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (waterLevel == 1))) Ensures: (((((((((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (\old(waterLevel) == 1)) && (1 == systemActive)) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (1 <= methaneLevelCritical)) && (1 == systemActive)) && (\old(waterLevel) == 2))) || (((((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (\old(waterLevel) == 1)) && (methaneLevelCritical == 0)) && (1 == systemActive))) || (((pumpRunning == 0) && (methAndRunningLastTime == 0)) && (0 == systemActive))) || ((((methAndRunningLastTime == 0) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (\old(waterLevel) == 2))) && ((2 == waterLevel) || (1 != systemActive))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical)))) RESULT: Ultimate proved your program to be correct! [2024-11-09 23:16:41,057 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE