./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash ae631a30e0cfb00652c35b082fd4038988aa5f3b2e1b026ceeb94d0624c45642 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-13 13:40:31,166 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-13 13:40:31,260 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-13 13:40:31,266 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-13 13:40:31,266 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-13 13:40:31,306 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-13 13:40:31,306 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-13 13:40:31,306 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-13 13:40:31,307 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-13 13:40:31,307 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-13 13:40:31,307 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-13 13:40:31,307 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-13 13:40:31,309 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-13 13:40:31,309 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-13 13:40:31,310 INFO L153 SettingsManager]: * Use SBE=true [2024-11-13 13:40:31,310 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-13 13:40:31,311 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-13 13:40:31,312 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-13 13:40:31,312 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-13 13:40:31,312 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-13 13:40:31,313 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-13 13:40:31,313 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-13 13:40:31,313 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-13 13:40:31,313 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-13 13:40:31,313 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> ae631a30e0cfb00652c35b082fd4038988aa5f3b2e1b026ceeb94d0624c45642 [2024-11-13 13:40:31,628 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-13 13:40:31,638 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-13 13:40:31,644 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-13 13:40:31,645 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-13 13:40:31,645 INFO L274 PluginConnector]: CDTParser initialized [2024-11-13 13:40:31,647 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/../../sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c Unable to find full path for "g++" [2024-11-13 13:40:33,633 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-13 13:40:33,924 INFO L384 CDTParser]: Found 1 translation units. [2024-11-13 13:40:33,925 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c [2024-11-13 13:40:33,938 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/data/c39fa24af/d7aaeaeb73d94e19ba9a6dd3a88b8dc7/FLAG1c331e3cf [2024-11-13 13:40:33,955 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/data/c39fa24af/d7aaeaeb73d94e19ba9a6dd3a88b8dc7 [2024-11-13 13:40:33,959 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-13 13:40:33,960 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-13 13:40:33,962 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-13 13:40:33,962 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-13 13:40:33,973 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-13 13:40:33,974 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 13.11 01:40:33" (1/1) ... [2024-11-13 13:40:33,976 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@65883b9a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:33, skipping insertion in model container [2024-11-13 13:40:33,976 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 13.11 01:40:33" (1/1) ... [2024-11-13 13:40:34,023 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-13 13:40:34,283 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c[13037,13050] [2024-11-13 13:40:34,343 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-13 13:40:34,361 INFO L200 MainTranslator]: Completed pre-run [2024-11-13 13:40:34,371 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [49] [2024-11-13 13:40:34,372 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [153] [2024-11-13 13:40:34,373 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [188] [2024-11-13 13:40:34,373 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [554] [2024-11-13 13:40:34,374 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [563] [2024-11-13 13:40:34,375 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [672] [2024-11-13 13:40:34,375 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [707] [2024-11-13 13:40:34,375 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [775] [2024-11-13 13:40:34,453 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/sv-benchmarks/c/product-lines/minepump_spec3_product58.cil.c[13037,13050] [2024-11-13 13:40:34,477 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-13 13:40:34,499 INFO L204 MainTranslator]: Completed translation [2024-11-13 13:40:34,500 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34 WrapperNode [2024-11-13 13:40:34,500 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-13 13:40:34,501 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-13 13:40:34,501 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-13 13:40:34,501 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-13 13:40:34,508 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,521 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,561 INFO L138 Inliner]: procedures = 57, calls = 102, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 229 [2024-11-13 13:40:34,562 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-13 13:40:34,562 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-13 13:40:34,563 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-13 13:40:34,563 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-13 13:40:34,573 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,574 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,576 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,590 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-13 13:40:34,590 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,591 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,596 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,604 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,606 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,611 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,614 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-13 13:40:34,615 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-13 13:40:34,615 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-13 13:40:34,615 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-13 13:40:34,616 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (1/1) ... [2024-11-13 13:40:34,625 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-13 13:40:34,640 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 [2024-11-13 13:40:34,655 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-13 13:40:34,660 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-13 13:40:34,702 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-13 13:40:34,703 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-13 13:40:34,703 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-13 13:40:34,703 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-13 13:40:34,703 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-13 13:40:34,703 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-13 13:40:34,703 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-13 13:40:34,704 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-13 13:40:34,704 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-13 13:40:34,704 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-13 13:40:34,704 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-13 13:40:34,704 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-13 13:40:34,704 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-13 13:40:34,704 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-13 13:40:34,704 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-13 13:40:34,704 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-13 13:40:34,705 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-13 13:40:34,705 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-13 13:40:34,821 INFO L238 CfgBuilder]: Building ICFG [2024-11-13 13:40:34,823 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-13 13:40:35,117 INFO L? ?]: Removed 53 outVars from TransFormulas that were not future-live. [2024-11-13 13:40:35,120 INFO L287 CfgBuilder]: Performing block encoding [2024-11-13 13:40:35,132 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-13 13:40:35,132 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-13 13:40:35,133 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 13.11 01:40:35 BoogieIcfgContainer [2024-11-13 13:40:35,133 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-13 13:40:35,135 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-13 13:40:35,135 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-13 13:40:35,141 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-13 13:40:35,141 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 13.11 01:40:33" (1/3) ... [2024-11-13 13:40:35,141 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5cf83d97 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 13.11 01:40:35, skipping insertion in model container [2024-11-13 13:40:35,141 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 13.11 01:40:34" (2/3) ... [2024-11-13 13:40:35,142 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5cf83d97 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 13.11 01:40:35, skipping insertion in model container [2024-11-13 13:40:35,142 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 13.11 01:40:35" (3/3) ... [2024-11-13 13:40:35,143 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product58.cil.c [2024-11-13 13:40:35,159 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-13 13:40:35,161 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec3_product58.cil.c that has 8 procedures, 94 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-13 13:40:35,219 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-13 13:40:35,231 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@7986c871, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-13 13:40:35,231 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-13 13:40:35,235 INFO L276 IsEmpty]: Start isEmpty. Operand has 94 states, 73 states have (on average 1.3835616438356164) internal successors, (101), 81 states have internal predecessors, (101), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-13 13:40:35,244 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-13 13:40:35,245 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:35,245 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:35,246 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:35,250 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:35,251 INFO L85 PathProgramCache]: Analyzing trace with hash -671446090, now seen corresponding path program 1 times [2024-11-13 13:40:35,258 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:35,259 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1372169856] [2024-11-13 13:40:35,259 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:35,259 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:35,392 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:35,486 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 14 [2024-11-13 13:40:35,490 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:35,499 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:35,500 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:35,500 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1372169856] [2024-11-13 13:40:35,501 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1372169856] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:35,501 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:35,501 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-13 13:40:35,503 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [191074347] [2024-11-13 13:40:35,503 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:35,507 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-13 13:40:35,507 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:35,527 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-13 13:40:35,528 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-13 13:40:35,530 INFO L87 Difference]: Start difference. First operand has 94 states, 73 states have (on average 1.3835616438356164) internal successors, (101), 81 states have internal predecessors, (101), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-13 13:40:35,563 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:35,565 INFO L93 Difference]: Finished difference Result 180 states and 245 transitions. [2024-11-13 13:40:35,565 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-13 13:40:35,567 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25 [2024-11-13 13:40:35,567 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:35,574 INFO L225 Difference]: With dead ends: 180 [2024-11-13 13:40:35,574 INFO L226 Difference]: Without dead ends: 85 [2024-11-13 13:40:35,578 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-13 13:40:35,581 INFO L432 NwaCegarLoop]: 119 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:35,584 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 119 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-13 13:40:35,597 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 85 states. [2024-11-13 13:40:35,622 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 85 to 85. [2024-11-13 13:40:35,624 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 85 states, 66 states have (on average 1.3181818181818181) internal successors, (87), 73 states have internal predecessors, (87), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-13 13:40:35,630 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 85 states to 85 states and 110 transitions. [2024-11-13 13:40:35,632 INFO L78 Accepts]: Start accepts. Automaton has 85 states and 110 transitions. Word has length 25 [2024-11-13 13:40:35,632 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:35,632 INFO L471 AbstractCegarLoop]: Abstraction has 85 states and 110 transitions. [2024-11-13 13:40:35,633 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-13 13:40:35,633 INFO L276 IsEmpty]: Start isEmpty. Operand 85 states and 110 transitions. [2024-11-13 13:40:35,635 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2024-11-13 13:40:35,635 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:35,636 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:35,636 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-13 13:40:35,636 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:35,637 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:35,637 INFO L85 PathProgramCache]: Analyzing trace with hash -826284529, now seen corresponding path program 1 times [2024-11-13 13:40:35,638 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:35,638 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1893632909] [2024-11-13 13:40:35,638 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:35,638 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:35,663 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:35,796 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 15 [2024-11-13 13:40:35,799 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:35,801 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:35,802 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:35,802 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1893632909] [2024-11-13 13:40:35,802 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1893632909] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:35,802 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:35,802 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-13 13:40:35,802 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1501987888] [2024-11-13 13:40:35,803 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:35,804 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-13 13:40:35,804 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:35,804 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-13 13:40:35,805 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-13 13:40:35,805 INFO L87 Difference]: Start difference. First operand 85 states and 110 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-13 13:40:35,843 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:35,844 INFO L93 Difference]: Finished difference Result 135 states and 175 transitions. [2024-11-13 13:40:35,844 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-13 13:40:35,845 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 26 [2024-11-13 13:40:35,845 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:35,846 INFO L225 Difference]: With dead ends: 135 [2024-11-13 13:40:35,846 INFO L226 Difference]: Without dead ends: 76 [2024-11-13 13:40:35,847 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-13 13:40:35,848 INFO L432 NwaCegarLoop]: 97 mSDtfsCounter, 13 mSDsluCounter, 80 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 177 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:35,848 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 177 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-13 13:40:35,849 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 76 states. [2024-11-13 13:40:35,856 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 76 to 76. [2024-11-13 13:40:35,857 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 76 states, 60 states have (on average 1.3333333333333333) internal successors, (80), 67 states have internal predecessors, (80), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2024-11-13 13:40:35,859 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 76 states to 76 states and 98 transitions. [2024-11-13 13:40:35,859 INFO L78 Accepts]: Start accepts. Automaton has 76 states and 98 transitions. Word has length 26 [2024-11-13 13:40:35,859 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:35,859 INFO L471 AbstractCegarLoop]: Abstraction has 76 states and 98 transitions. [2024-11-13 13:40:35,860 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-13 13:40:35,860 INFO L276 IsEmpty]: Start isEmpty. Operand 76 states and 98 transitions. [2024-11-13 13:40:35,861 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-13 13:40:35,861 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:35,861 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:35,861 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-13 13:40:35,861 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:35,862 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:35,862 INFO L85 PathProgramCache]: Analyzing trace with hash -578931725, now seen corresponding path program 1 times [2024-11-13 13:40:35,862 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:35,862 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1375837959] [2024-11-13 13:40:35,863 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:35,863 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:35,882 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,046 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-13 13:40:36,049 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,057 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:36,057 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:36,057 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1375837959] [2024-11-13 13:40:36,057 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1375837959] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:36,057 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:36,057 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-13 13:40:36,058 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [895392334] [2024-11-13 13:40:36,058 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:36,058 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-13 13:40:36,058 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:36,059 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-13 13:40:36,059 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-13 13:40:36,059 INFO L87 Difference]: Start difference. First operand 76 states and 98 transitions. Second operand has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-13 13:40:36,153 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:36,153 INFO L93 Difference]: Finished difference Result 145 states and 190 transitions. [2024-11-13 13:40:36,155 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-13 13:40:36,156 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 31 [2024-11-13 13:40:36,156 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:36,157 INFO L225 Difference]: With dead ends: 145 [2024-11-13 13:40:36,157 INFO L226 Difference]: Without dead ends: 76 [2024-11-13 13:40:36,158 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-13 13:40:36,160 INFO L432 NwaCegarLoop]: 94 mSDtfsCounter, 92 mSDsluCounter, 186 mSDsCounter, 0 mSdLazyCounter, 9 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 92 SdHoareTripleChecker+Valid, 280 SdHoareTripleChecker+Invalid, 10 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 9 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:36,161 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [92 Valid, 280 Invalid, 10 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 9 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-13 13:40:36,162 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 76 states. [2024-11-13 13:40:36,178 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 76 to 76. [2024-11-13 13:40:36,178 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 76 states, 60 states have (on average 1.3166666666666667) internal successors, (79), 67 states have internal predecessors, (79), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2024-11-13 13:40:36,183 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 76 states to 76 states and 97 transitions. [2024-11-13 13:40:36,183 INFO L78 Accepts]: Start accepts. Automaton has 76 states and 97 transitions. Word has length 31 [2024-11-13 13:40:36,184 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:36,184 INFO L471 AbstractCegarLoop]: Abstraction has 76 states and 97 transitions. [2024-11-13 13:40:36,184 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 5.6) internal successors, (28), 5 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-13 13:40:36,184 INFO L276 IsEmpty]: Start isEmpty. Operand 76 states and 97 transitions. [2024-11-13 13:40:36,185 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-13 13:40:36,185 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:36,185 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:36,189 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-13 13:40:36,190 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:36,190 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:36,190 INFO L85 PathProgramCache]: Analyzing trace with hash 1057849944, now seen corresponding path program 1 times [2024-11-13 13:40:36,190 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:36,191 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2122500657] [2024-11-13 13:40:36,191 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:36,191 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:36,214 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,279 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-13 13:40:36,281 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,301 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 2 [2024-11-13 13:40:36,303 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,305 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 30 [2024-11-13 13:40:36,307 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,308 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:36,308 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:36,309 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2122500657] [2024-11-13 13:40:36,309 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2122500657] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:36,309 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:36,309 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-13 13:40:36,309 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [347001426] [2024-11-13 13:40:36,309 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:36,309 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-13 13:40:36,310 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:36,310 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-13 13:40:36,310 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-13 13:40:36,310 INFO L87 Difference]: Start difference. First operand 76 states and 97 transitions. Second operand has 5 states, 5 states have (on average 6.8) internal successors, (34), 5 states have internal predecessors, (34), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-13 13:40:36,584 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:36,584 INFO L93 Difference]: Finished difference Result 224 states and 286 transitions. [2024-11-13 13:40:36,584 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-13 13:40:36,585 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.8) internal successors, (34), 5 states have internal predecessors, (34), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 41 [2024-11-13 13:40:36,587 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:36,588 INFO L225 Difference]: With dead ends: 224 [2024-11-13 13:40:36,588 INFO L226 Difference]: Without dead ends: 155 [2024-11-13 13:40:36,589 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 9 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=19, Invalid=37, Unknown=0, NotChecked=0, Total=56 [2024-11-13 13:40:36,590 INFO L432 NwaCegarLoop]: 119 mSDtfsCounter, 201 mSDsluCounter, 179 mSDsCounter, 0 mSdLazyCounter, 101 mSolverCounterSat, 46 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 203 SdHoareTripleChecker+Valid, 298 SdHoareTripleChecker+Invalid, 147 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 46 IncrementalHoareTripleChecker+Valid, 101 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:36,592 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [203 Valid, 298 Invalid, 147 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [46 Valid, 101 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-13 13:40:36,595 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 155 states. [2024-11-13 13:40:36,625 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 155 to 149. [2024-11-13 13:40:36,627 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 149 states, 117 states have (on average 1.2735042735042734) internal successors, (149), 125 states have internal predecessors, (149), 15 states have call successors, (15), 13 states have call predecessors, (15), 16 states have return successors, (20), 16 states have call predecessors, (20), 15 states have call successors, (20) [2024-11-13 13:40:36,629 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 184 transitions. [2024-11-13 13:40:36,631 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 184 transitions. Word has length 41 [2024-11-13 13:40:36,633 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:36,633 INFO L471 AbstractCegarLoop]: Abstraction has 149 states and 184 transitions. [2024-11-13 13:40:36,633 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.8) internal successors, (34), 5 states have internal predecessors, (34), 4 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-13 13:40:36,633 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 184 transitions. [2024-11-13 13:40:36,634 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2024-11-13 13:40:36,634 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:36,636 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:36,636 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-13 13:40:36,636 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:36,637 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:36,637 INFO L85 PathProgramCache]: Analyzing trace with hash 1619198256, now seen corresponding path program 1 times [2024-11-13 13:40:36,637 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:36,637 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [967656128] [2024-11-13 13:40:36,637 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:36,637 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:36,669 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,866 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-13 13:40:36,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,888 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:36,889 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,893 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 36 [2024-11-13 13:40:36,896 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:36,899 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:36,902 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:36,902 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [967656128] [2024-11-13 13:40:36,902 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [967656128] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:36,902 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:36,902 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-13 13:40:36,903 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1638326896] [2024-11-13 13:40:36,903 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:36,904 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-13 13:40:36,904 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:36,905 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-13 13:40:36,905 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-13 13:40:36,905 INFO L87 Difference]: Start difference. First operand 149 states and 184 transitions. Second operand has 6 states, 6 states have (on average 6.666666666666667) internal successors, (40), 5 states have internal predecessors, (40), 2 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-13 13:40:37,257 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:37,257 INFO L93 Difference]: Finished difference Result 381 states and 489 transitions. [2024-11-13 13:40:37,259 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-13 13:40:37,259 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.666666666666667) internal successors, (40), 5 states have internal predecessors, (40), 2 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 47 [2024-11-13 13:40:37,259 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:37,261 INFO L225 Difference]: With dead ends: 381 [2024-11-13 13:40:37,261 INFO L226 Difference]: Without dead ends: 239 [2024-11-13 13:40:37,262 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 17 GetRequests, 8 SyntacticMatches, 0 SemanticMatches, 9 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 6 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=35, Invalid=75, Unknown=0, NotChecked=0, Total=110 [2024-11-13 13:40:37,267 INFO L432 NwaCegarLoop]: 89 mSDtfsCounter, 124 mSDsluCounter, 271 mSDsCounter, 0 mSdLazyCounter, 150 mSolverCounterSat, 31 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 129 SdHoareTripleChecker+Valid, 360 SdHoareTripleChecker+Invalid, 181 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 150 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:37,267 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [129 Valid, 360 Invalid, 181 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 150 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-13 13:40:37,272 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 239 states. [2024-11-13 13:40:37,314 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 239 to 237. [2024-11-13 13:40:37,314 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 237 states, 185 states have (on average 1.2594594594594595) internal successors, (233), 196 states have internal predecessors, (233), 26 states have call successors, (26), 23 states have call predecessors, (26), 25 states have return successors, (36), 26 states have call predecessors, (36), 26 states have call successors, (36) [2024-11-13 13:40:37,316 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 237 states to 237 states and 295 transitions. [2024-11-13 13:40:37,317 INFO L78 Accepts]: Start accepts. Automaton has 237 states and 295 transitions. Word has length 47 [2024-11-13 13:40:37,317 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:37,317 INFO L471 AbstractCegarLoop]: Abstraction has 237 states and 295 transitions. [2024-11-13 13:40:37,317 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.666666666666667) internal successors, (40), 5 states have internal predecessors, (40), 2 states have call successors, (4), 3 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-13 13:40:37,317 INFO L276 IsEmpty]: Start isEmpty. Operand 237 states and 295 transitions. [2024-11-13 13:40:37,323 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-13 13:40:37,323 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:37,323 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:37,323 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-13 13:40:37,323 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:37,324 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:37,324 INFO L85 PathProgramCache]: Analyzing trace with hash -493260278, now seen corresponding path program 1 times [2024-11-13 13:40:37,324 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:37,324 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1581842657] [2024-11-13 13:40:37,324 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:37,324 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:37,356 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:37,485 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:37,486 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:37,498 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-13 13:40:37,503 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:37,514 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:37,515 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:37,517 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 40 [2024-11-13 13:40:37,519 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:37,522 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:37,522 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:37,522 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1581842657] [2024-11-13 13:40:37,522 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1581842657] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:37,522 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:37,522 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-13 13:40:37,522 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [731079090] [2024-11-13 13:40:37,522 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:37,523 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-13 13:40:37,523 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:37,523 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-13 13:40:37,523 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-11-13 13:40:37,524 INFO L87 Difference]: Start difference. First operand 237 states and 295 transitions. Second operand has 7 states, 7 states have (on average 6.0) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:38,188 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:38,189 INFO L93 Difference]: Finished difference Result 547 states and 706 transitions. [2024-11-13 13:40:38,189 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-11-13 13:40:38,190 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.0) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 51 [2024-11-13 13:40:38,190 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:38,194 INFO L225 Difference]: With dead ends: 547 [2024-11-13 13:40:38,194 INFO L226 Difference]: Without dead ends: 405 [2024-11-13 13:40:38,195 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 29 GetRequests, 12 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 58 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=93, Invalid=249, Unknown=0, NotChecked=0, Total=342 [2024-11-13 13:40:38,196 INFO L432 NwaCegarLoop]: 77 mSDtfsCounter, 285 mSDsluCounter, 281 mSDsCounter, 0 mSdLazyCounter, 287 mSolverCounterSat, 84 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 288 SdHoareTripleChecker+Valid, 358 SdHoareTripleChecker+Invalid, 371 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 84 IncrementalHoareTripleChecker+Valid, 287 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:38,197 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [288 Valid, 358 Invalid, 371 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [84 Valid, 287 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-13 13:40:38,198 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 405 states. [2024-11-13 13:40:38,279 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 405 to 395. [2024-11-13 13:40:38,280 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 395 states, 309 states have (on average 1.2362459546925566) internal successors, (382), 329 states have internal predecessors, (382), 42 states have call successors, (42), 34 states have call predecessors, (42), 43 states have return successors, (69), 43 states have call predecessors, (69), 42 states have call successors, (69) [2024-11-13 13:40:38,286 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 395 states to 395 states and 493 transitions. [2024-11-13 13:40:38,287 INFO L78 Accepts]: Start accepts. Automaton has 395 states and 493 transitions. Word has length 51 [2024-11-13 13:40:38,287 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:38,287 INFO L471 AbstractCegarLoop]: Abstraction has 395 states and 493 transitions. [2024-11-13 13:40:38,287 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.0) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:38,287 INFO L276 IsEmpty]: Start isEmpty. Operand 395 states and 493 transitions. [2024-11-13 13:40:38,289 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-13 13:40:38,289 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:38,289 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:38,289 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-13 13:40:38,289 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:38,290 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:38,290 INFO L85 PathProgramCache]: Analyzing trace with hash -627273784, now seen corresponding path program 1 times [2024-11-13 13:40:38,290 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:38,290 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1756401764] [2024-11-13 13:40:38,290 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:38,294 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:38,316 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,374 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:38,375 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,382 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-13 13:40:38,391 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,421 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:38,422 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,423 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 40 [2024-11-13 13:40:38,425 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,427 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:38,427 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:38,427 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1756401764] [2024-11-13 13:40:38,427 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1756401764] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:38,427 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:38,428 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-13 13:40:38,428 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [820385576] [2024-11-13 13:40:38,428 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:38,428 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-13 13:40:38,428 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:38,429 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-13 13:40:38,429 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-13 13:40:38,429 INFO L87 Difference]: Start difference. First operand 395 states and 493 transitions. Second operand has 6 states, 6 states have (on average 7.0) internal successors, (42), 4 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:38,745 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:38,746 INFO L93 Difference]: Finished difference Result 705 states and 883 transitions. [2024-11-13 13:40:38,747 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-13 13:40:38,747 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.0) internal successors, (42), 4 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 51 [2024-11-13 13:40:38,748 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:38,750 INFO L225 Difference]: With dead ends: 705 [2024-11-13 13:40:38,751 INFO L226 Difference]: Without dead ends: 401 [2024-11-13 13:40:38,752 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 17 GetRequests, 10 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=25, Invalid=47, Unknown=0, NotChecked=0, Total=72 [2024-11-13 13:40:38,752 INFO L432 NwaCegarLoop]: 87 mSDtfsCounter, 117 mSDsluCounter, 248 mSDsCounter, 0 mSdLazyCounter, 196 mSolverCounterSat, 31 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 119 SdHoareTripleChecker+Valid, 335 SdHoareTripleChecker+Invalid, 227 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 196 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:38,753 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [119 Valid, 335 Invalid, 227 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 196 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-13 13:40:38,754 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 401 states. [2024-11-13 13:40:38,800 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 401 to 395. [2024-11-13 13:40:38,801 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 395 states, 309 states have (on average 1.233009708737864) internal successors, (381), 329 states have internal predecessors, (381), 42 states have call successors, (42), 34 states have call predecessors, (42), 43 states have return successors, (69), 43 states have call predecessors, (69), 42 states have call successors, (69) [2024-11-13 13:40:38,804 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 395 states to 395 states and 492 transitions. [2024-11-13 13:40:38,804 INFO L78 Accepts]: Start accepts. Automaton has 395 states and 492 transitions. Word has length 51 [2024-11-13 13:40:38,805 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:38,805 INFO L471 AbstractCegarLoop]: Abstraction has 395 states and 492 transitions. [2024-11-13 13:40:38,805 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.0) internal successors, (42), 4 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:38,805 INFO L276 IsEmpty]: Start isEmpty. Operand 395 states and 492 transitions. [2024-11-13 13:40:38,806 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-13 13:40:38,807 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:38,807 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:38,807 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-13 13:40:38,807 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:38,808 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:38,808 INFO L85 PathProgramCache]: Analyzing trace with hash -408419066, now seen corresponding path program 1 times [2024-11-13 13:40:38,808 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:38,808 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2108260859] [2024-11-13 13:40:38,808 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:38,808 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:38,828 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,945 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:38,947 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:38,959 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-13 13:40:38,962 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,072 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:39,073 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,075 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 40 [2024-11-13 13:40:39,079 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,080 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:39,082 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:39,082 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2108260859] [2024-11-13 13:40:39,082 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2108260859] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:39,082 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:39,082 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [9] imperfect sequences [] total 9 [2024-11-13 13:40:39,083 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1978925873] [2024-11-13 13:40:39,083 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:39,084 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 9 states [2024-11-13 13:40:39,084 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:39,085 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 9 interpolants. [2024-11-13 13:40:39,088 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=57, Unknown=0, NotChecked=0, Total=72 [2024-11-13 13:40:39,089 INFO L87 Difference]: Start difference. First operand 395 states and 492 transitions. Second operand has 9 states, 9 states have (on average 4.666666666666667) internal successors, (42), 7 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:39,547 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:39,550 INFO L93 Difference]: Finished difference Result 792 states and 997 transitions. [2024-11-13 13:40:39,551 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2024-11-13 13:40:39,551 INFO L78 Accepts]: Start accepts. Automaton has has 9 states, 9 states have (on average 4.666666666666667) internal successors, (42), 7 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 51 [2024-11-13 13:40:39,551 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:39,555 INFO L225 Difference]: With dead ends: 792 [2024-11-13 13:40:39,555 INFO L226 Difference]: Without dead ends: 404 [2024-11-13 13:40:39,556 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 22 GetRequests, 11 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=37, Invalid=119, Unknown=0, NotChecked=0, Total=156 [2024-11-13 13:40:39,560 INFO L432 NwaCegarLoop]: 85 mSDtfsCounter, 117 mSDsluCounter, 484 mSDsCounter, 0 mSdLazyCounter, 388 mSolverCounterSat, 31 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 119 SdHoareTripleChecker+Valid, 569 SdHoareTripleChecker+Invalid, 419 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 31 IncrementalHoareTripleChecker+Valid, 388 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:39,561 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [119 Valid, 569 Invalid, 419 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [31 Valid, 388 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-13 13:40:39,562 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 404 states. [2024-11-13 13:40:39,604 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 404 to 398. [2024-11-13 13:40:39,605 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 398 states, 314 states have (on average 1.2261146496815287) internal successors, (385), 333 states have internal predecessors, (385), 41 states have call successors, (41), 33 states have call predecessors, (41), 42 states have return successors, (68), 42 states have call predecessors, (68), 41 states have call successors, (68) [2024-11-13 13:40:39,609 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 398 states to 398 states and 494 transitions. [2024-11-13 13:40:39,609 INFO L78 Accepts]: Start accepts. Automaton has 398 states and 494 transitions. Word has length 51 [2024-11-13 13:40:39,609 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:39,610 INFO L471 AbstractCegarLoop]: Abstraction has 398 states and 494 transitions. [2024-11-13 13:40:39,610 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 9 states, 9 states have (on average 4.666666666666667) internal successors, (42), 7 states have internal predecessors, (42), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:39,610 INFO L276 IsEmpty]: Start isEmpty. Operand 398 states and 494 transitions. [2024-11-13 13:40:39,611 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-11-13 13:40:39,611 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:39,611 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:39,612 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-13 13:40:39,612 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:39,612 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:39,612 INFO L85 PathProgramCache]: Analyzing trace with hash -1967356488, now seen corresponding path program 1 times [2024-11-13 13:40:39,612 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:39,613 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1960612569] [2024-11-13 13:40:39,613 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:39,613 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:39,630 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,775 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:39,777 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,789 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-13 13:40:39,797 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,947 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:39,949 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,970 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 45 [2024-11-13 13:40:39,971 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:39,973 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 2 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-13 13:40:39,973 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:39,973 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1960612569] [2024-11-13 13:40:39,973 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1960612569] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-13 13:40:39,973 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1418291297] [2024-11-13 13:40:39,973 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:39,973 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-13 13:40:39,974 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 [2024-11-13 13:40:39,981 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-13 13:40:39,982 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-13 13:40:40,092 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:40,099 INFO L255 TraceCheckSpWp]: Trace formula consists of 228 conjuncts, 15 conjuncts are in the unsatisfiable core [2024-11-13 13:40:40,110 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-13 13:40:40,333 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 3 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-13 13:40:40,333 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-13 13:40:40,333 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1418291297] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:40,333 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-13 13:40:40,333 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [10] total 14 [2024-11-13 13:40:40,333 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [337590126] [2024-11-13 13:40:40,333 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:40,334 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-13 13:40:40,334 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:40,334 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-13 13:40:40,337 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=35, Invalid=147, Unknown=0, NotChecked=0, Total=182 [2024-11-13 13:40:40,337 INFO L87 Difference]: Start difference. First operand 398 states and 494 transitions. Second operand has 7 states, 7 states have (on average 6.714285714285714) internal successors, (47), 5 states have internal predecessors, (47), 2 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:40,551 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:40,551 INFO L93 Difference]: Finished difference Result 1163 states and 1470 transitions. [2024-11-13 13:40:40,553 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-13 13:40:40,553 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.714285714285714) internal successors, (47), 5 states have internal predecessors, (47), 2 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) Word has length 56 [2024-11-13 13:40:40,554 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:40,561 INFO L225 Difference]: With dead ends: 1163 [2024-11-13 13:40:40,561 INFO L226 Difference]: Without dead ends: 772 [2024-11-13 13:40:40,565 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 69 GetRequests, 57 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 11 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=35, Invalid=147, Unknown=0, NotChecked=0, Total=182 [2024-11-13 13:40:40,565 INFO L432 NwaCegarLoop]: 94 mSDtfsCounter, 54 mSDsluCounter, 379 mSDsCounter, 0 mSdLazyCounter, 111 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 55 SdHoareTripleChecker+Valid, 473 SdHoareTripleChecker+Invalid, 113 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 111 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:40,566 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [55 Valid, 473 Invalid, 113 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 111 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-13 13:40:40,567 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 772 states. [2024-11-13 13:40:40,679 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 772 to 770. [2024-11-13 13:40:40,681 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 770 states, 606 states have (on average 1.2145214521452146) internal successors, (736), 640 states have internal predecessors, (736), 81 states have call successors, (81), 66 states have call predecessors, (81), 82 states have return successors, (138), 82 states have call predecessors, (138), 81 states have call successors, (138) [2024-11-13 13:40:40,707 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 770 states to 770 states and 955 transitions. [2024-11-13 13:40:40,708 INFO L78 Accepts]: Start accepts. Automaton has 770 states and 955 transitions. Word has length 56 [2024-11-13 13:40:40,708 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:40,709 INFO L471 AbstractCegarLoop]: Abstraction has 770 states and 955 transitions. [2024-11-13 13:40:40,709 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.714285714285714) internal successors, (47), 5 states have internal predecessors, (47), 2 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:40,710 INFO L276 IsEmpty]: Start isEmpty. Operand 770 states and 955 transitions. [2024-11-13 13:40:40,711 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 58 [2024-11-13 13:40:40,711 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:40,712 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:40,736 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-13 13:40:40,916 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-13 13:40:40,916 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:40,916 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:40,917 INFO L85 PathProgramCache]: Analyzing trace with hash 1993273128, now seen corresponding path program 1 times [2024-11-13 13:40:40,917 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:40,917 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2034583385] [2024-11-13 13:40:40,917 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:40,917 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:40,937 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,032 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:41,033 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,050 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 24 [2024-11-13 13:40:41,055 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,069 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:41,071 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,072 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 46 [2024-11-13 13:40:41,077 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,079 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-13 13:40:41,080 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:41,080 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2034583385] [2024-11-13 13:40:41,080 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2034583385] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:41,080 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:41,080 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-13 13:40:41,080 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1657146943] [2024-11-13 13:40:41,080 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:41,085 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-13 13:40:41,085 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:41,085 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-13 13:40:41,085 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-11-13 13:40:41,086 INFO L87 Difference]: Start difference. First operand 770 states and 955 transitions. Second operand has 7 states, 7 states have (on average 6.571428571428571) internal successors, (46), 5 states have internal predecessors, (46), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:41,632 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:41,633 INFO L93 Difference]: Finished difference Result 1535 states and 1904 transitions. [2024-11-13 13:40:41,633 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 13 states. [2024-11-13 13:40:41,633 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.571428571428571) internal successors, (46), 5 states have internal predecessors, (46), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 57 [2024-11-13 13:40:41,634 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:41,643 INFO L225 Difference]: With dead ends: 1535 [2024-11-13 13:40:41,643 INFO L226 Difference]: Without dead ends: 772 [2024-11-13 13:40:41,648 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 25 GetRequests, 12 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 22 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=55, Invalid=155, Unknown=0, NotChecked=0, Total=210 [2024-11-13 13:40:41,649 INFO L432 NwaCegarLoop]: 113 mSDtfsCounter, 205 mSDsluCounter, 355 mSDsCounter, 0 mSdLazyCounter, 334 mSolverCounterSat, 44 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 208 SdHoareTripleChecker+Valid, 468 SdHoareTripleChecker+Invalid, 378 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 44 IncrementalHoareTripleChecker+Valid, 334 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:41,649 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [208 Valid, 468 Invalid, 378 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [44 Valid, 334 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-13 13:40:41,651 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 772 states. [2024-11-13 13:40:41,745 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 772 to 770. [2024-11-13 13:40:41,747 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 770 states, 606 states have (on average 1.198019801980198) internal successors, (726), 640 states have internal predecessors, (726), 81 states have call successors, (81), 66 states have call predecessors, (81), 82 states have return successors, (123), 82 states have call predecessors, (123), 81 states have call successors, (123) [2024-11-13 13:40:41,755 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 770 states to 770 states and 930 transitions. [2024-11-13 13:40:41,756 INFO L78 Accepts]: Start accepts. Automaton has 770 states and 930 transitions. Word has length 57 [2024-11-13 13:40:41,757 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:41,757 INFO L471 AbstractCegarLoop]: Abstraction has 770 states and 930 transitions. [2024-11-13 13:40:41,757 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.571428571428571) internal successors, (46), 5 states have internal predecessors, (46), 2 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-13 13:40:41,758 INFO L276 IsEmpty]: Start isEmpty. Operand 770 states and 930 transitions. [2024-11-13 13:40:41,761 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2024-11-13 13:40:41,761 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:41,761 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:41,762 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable9 [2024-11-13 13:40:41,763 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:41,763 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:41,764 INFO L85 PathProgramCache]: Analyzing trace with hash -1285776740, now seen corresponding path program 1 times [2024-11-13 13:40:41,764 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:41,764 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1866810234] [2024-11-13 13:40:41,764 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:41,764 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:41,790 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,969 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:41,971 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:41,985 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 17 [2024-11-13 13:40:41,987 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:42,020 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 28 [2024-11-13 13:40:42,026 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:42,036 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:42,042 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:42,043 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 49 [2024-11-13 13:40:42,046 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:42,072 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-13 13:40:42,073 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:42,073 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1866810234] [2024-11-13 13:40:42,073 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1866810234] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-13 13:40:42,073 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-13 13:40:42,073 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [12] imperfect sequences [] total 12 [2024-11-13 13:40:42,073 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1030003033] [2024-11-13 13:40:42,073 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-13 13:40:42,074 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 12 states [2024-11-13 13:40:42,074 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:42,074 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 12 interpolants. [2024-11-13 13:40:42,075 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=22, Invalid=110, Unknown=0, NotChecked=0, Total=132 [2024-11-13 13:40:42,075 INFO L87 Difference]: Start difference. First operand 770 states and 930 transitions. Second operand has 12 states, 12 states have (on average 4.083333333333333) internal successors, (49), 8 states have internal predecessors, (49), 2 states have call successors, (6), 5 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-13 13:40:43,564 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:43,565 INFO L93 Difference]: Finished difference Result 1501 states and 1833 transitions. [2024-11-13 13:40:43,565 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-11-13 13:40:43,565 INFO L78 Accepts]: Start accepts. Automaton has has 12 states, 12 states have (on average 4.083333333333333) internal successors, (49), 8 states have internal predecessors, (49), 2 states have call successors, (6), 5 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) Word has length 60 [2024-11-13 13:40:43,566 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:43,570 INFO L225 Difference]: With dead ends: 1501 [2024-11-13 13:40:43,570 INFO L226 Difference]: Without dead ends: 738 [2024-11-13 13:40:43,573 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 43 GetRequests, 14 SyntacticMatches, 0 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 162 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=211, Invalid=719, Unknown=0, NotChecked=0, Total=930 [2024-11-13 13:40:43,573 INFO L432 NwaCegarLoop]: 46 mSDtfsCounter, 275 mSDsluCounter, 327 mSDsCounter, 0 mSdLazyCounter, 1531 mSolverCounterSat, 70 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 280 SdHoareTripleChecker+Valid, 373 SdHoareTripleChecker+Invalid, 1601 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 70 IncrementalHoareTripleChecker+Valid, 1531 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.1s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:43,574 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [280 Valid, 373 Invalid, 1601 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [70 Valid, 1531 Invalid, 0 Unknown, 0 Unchecked, 1.1s Time] [2024-11-13 13:40:43,575 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 738 states. [2024-11-13 13:40:43,633 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 738 to 738. [2024-11-13 13:40:43,634 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 738 states, 574 states have (on average 1.1672473867595818) internal successors, (670), 608 states have internal predecessors, (670), 81 states have call successors, (81), 66 states have call predecessors, (81), 82 states have return successors, (117), 82 states have call predecessors, (117), 81 states have call successors, (117) [2024-11-13 13:40:43,638 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 738 states to 738 states and 868 transitions. [2024-11-13 13:40:43,640 INFO L78 Accepts]: Start accepts. Automaton has 738 states and 868 transitions. Word has length 60 [2024-11-13 13:40:43,640 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:43,640 INFO L471 AbstractCegarLoop]: Abstraction has 738 states and 868 transitions. [2024-11-13 13:40:43,640 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 12 states, 12 states have (on average 4.083333333333333) internal successors, (49), 8 states have internal predecessors, (49), 2 states have call successors, (6), 5 states have call predecessors, (6), 3 states have return successors, (5), 3 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-13 13:40:43,640 INFO L276 IsEmpty]: Start isEmpty. Operand 738 states and 868 transitions. [2024-11-13 13:40:43,648 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 90 [2024-11-13 13:40:43,648 INFO L207 NwaCegarLoop]: Found error trace [2024-11-13 13:40:43,649 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:43,649 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-13 13:40:43,649 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-13 13:40:43,649 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-13 13:40:43,649 INFO L85 PathProgramCache]: Analyzing trace with hash -1570884425, now seen corresponding path program 1 times [2024-11-13 13:40:43,649 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-13 13:40:43,649 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [442912354] [2024-11-13 13:40:43,649 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:43,650 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-13 13:40:43,668 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,769 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 11 [2024-11-13 13:40:43,771 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,786 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 20 [2024-11-13 13:40:43,789 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,812 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 3 [2024-11-13 13:40:43,815 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,820 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 8 [2024-11-13 13:40:43,821 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,823 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 25 [2024-11-13 13:40:43,825 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,827 INFO L368 atingTraceCheckCraig]: Compute interpolants for subsequence at non-pending call position 78 [2024-11-13 13:40:43,829 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,830 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 5 proven. 1 refuted. 0 times theorem prover too weak. 21 trivial. 0 not checked. [2024-11-13 13:40:43,830 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-13 13:40:43,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [442912354] [2024-11-13 13:40:43,830 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [442912354] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-13 13:40:43,830 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2049166691] [2024-11-13 13:40:43,830 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-13 13:40:43,831 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-13 13:40:43,831 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 [2024-11-13 13:40:43,835 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-13 13:40:43,837 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-13 13:40:43,957 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-13 13:40:43,958 INFO L255 TraceCheckSpWp]: Trace formula consists of 307 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-13 13:40:43,963 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-13 13:40:44,187 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 6 proven. 12 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-13 13:40:44,187 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-13 13:40:44,574 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 8 proven. 4 refuted. 0 times theorem prover too weak. 15 trivial. 0 not checked. [2024-11-13 13:40:44,574 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2049166691] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-13 13:40:44,574 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-13 13:40:44,575 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 8, 9] total 17 [2024-11-13 13:40:44,575 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [893302310] [2024-11-13 13:40:44,575 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-13 13:40:44,575 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-11-13 13:40:44,575 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-13 13:40:44,576 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-11-13 13:40:44,576 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=56, Invalid=216, Unknown=0, NotChecked=0, Total=272 [2024-11-13 13:40:44,577 INFO L87 Difference]: Start difference. First operand 738 states and 868 transitions. Second operand has 17 states, 17 states have (on average 7.352941176470588) internal successors, (125), 13 states have internal predecessors, (125), 6 states have call successors, (18), 9 states have call predecessors, (18), 6 states have return successors, (16), 6 states have call predecessors, (16), 6 states have call successors, (16) [2024-11-13 13:40:45,430 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-13 13:40:45,430 INFO L93 Difference]: Finished difference Result 1396 states and 1698 transitions. [2024-11-13 13:40:45,431 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-11-13 13:40:45,431 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 17 states have (on average 7.352941176470588) internal successors, (125), 13 states have internal predecessors, (125), 6 states have call successors, (18), 9 states have call predecessors, (18), 6 states have return successors, (16), 6 states have call predecessors, (16), 6 states have call successors, (16) Word has length 89 [2024-11-13 13:40:45,432 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-13 13:40:45,433 INFO L225 Difference]: With dead ends: 1396 [2024-11-13 13:40:45,433 INFO L226 Difference]: Without dead ends: 0 [2024-11-13 13:40:45,437 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 220 GetRequests, 177 SyntacticMatches, 7 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 258 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=369, Invalid=1037, Unknown=0, NotChecked=0, Total=1406 [2024-11-13 13:40:45,438 INFO L432 NwaCegarLoop]: 58 mSDtfsCounter, 385 mSDsluCounter, 409 mSDsCounter, 0 mSdLazyCounter, 535 mSolverCounterSat, 106 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 387 SdHoareTripleChecker+Valid, 467 SdHoareTripleChecker+Invalid, 641 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 106 IncrementalHoareTripleChecker+Valid, 535 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-13 13:40:45,438 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [387 Valid, 467 Invalid, 641 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [106 Valid, 535 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-13 13:40:45,438 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-13 13:40:45,439 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-13 13:40:45,439 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-13 13:40:45,439 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-13 13:40:45,440 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 89 [2024-11-13 13:40:45,440 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-13 13:40:45,440 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-13 13:40:45,440 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 17 states have (on average 7.352941176470588) internal successors, (125), 13 states have internal predecessors, (125), 6 states have call successors, (18), 9 states have call predecessors, (18), 6 states have return successors, (16), 6 states have call predecessors, (16), 6 states have call successors, (16) [2024-11-13 13:40:45,440 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-13 13:40:45,441 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-13 13:40:45,443 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-13 13:40:45,466 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-13 13:40:45,648 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-11-13 13:40:45,650 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-13 13:40:45,651 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-13 13:40:50,243 INFO L173 ceAbstractionStarter]: Computing trace abstraction results [2024-11-13 13:40:50,276 WARN L162 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (and (let ((.cse3 (= ~pumpRunning~0 1)) (.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse5 (= ~pumpRunning~0 0)) (.cse4 (<= 1 |old(~methaneLevelCritical~0)|)) (.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse5 .cse0 .cse1 .cse2) (and .cse5 .cse4 .cse1 .cse2))) (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0)) Eliminated clause: (let ((.cse3 (= ~pumpRunning~0 1)) (.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse5 (= ~pumpRunning~0 0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse5 .cse4 .cse1 .cse2) (and .cse5 .cse0 .cse1 .cse2))) [2024-11-13 13:40:50,304 WARN L162 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~pumpRunning~0)| 1)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (let ((.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (<= |old(~waterLevel~0)| 2)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse4 .cse5 .cse2 .cse3) (and .cse0 .cse5 .cse2 .cse3))) (or (not .cse1) (and (= ~pumpRunning~0 0) .cse6)) (or (not .cse5) (and .cse6 (= ~pumpRunning~0 1))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse5 (= |old(~pumpRunning~0)| 1)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (let ((.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (<= |old(~waterLevel~0)| 2)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse4 .cse5 .cse2 .cse3) (and .cse0 .cse5 .cse2 .cse3))) (or (not .cse1) (and (= ~pumpRunning~0 0) .cse6)) (or (not .cse5) (and .cse6 (= ~pumpRunning~0 1)))))) [2024-11-13 13:40:50,316 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-13 13:40:50,324 WARN L162 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse4 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (<= 1 ~methaneLevelCritical~0)) (.cse5 (<= ~waterLevel~0 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5 .cse3) (and .cse6 .cse1 .cse2 .cse3))) (or (not .cse4) (= ~pumpRunning~0 0)) (or (not .cse2) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse4 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse0 (<= 1 ~methaneLevelCritical~0)) (.cse5 (<= ~waterLevel~0 2)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse5 .cse3) (and .cse6 .cse4 .cse5 .cse3) (and .cse6 .cse1 .cse2 .cse3))) (or (not .cse4) (= ~pumpRunning~0 0)) (or (not .cse2) (= ~pumpRunning~0 1))))) [2024-11-13 13:40:50,332 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-13 13:40:50,337 WARN L162 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse1 (<= 1 ~methaneLevelCritical~0)) (.cse2 (<= |old(~waterLevel~0)| 2)) (.cse5 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse3 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse2 .cse3 .cse5) (and .cse1 .cse2 .cse3 .cse5) (and .cse0 .cse4 (<= |old(~waterLevel~0)| 1) .cse3))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse3 (= ~pumpRunning~0 1)) (.cse4 (<= 1 ~methaneLevelCritical~0)) (.cse1 (<= ~waterLevel~0 2)) (.cse5 (= ~pumpRunning~0 0)) (.cse0 (= ~methaneLevelCritical~0 0)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse4 .cse1 .cse2 .cse3) (and .cse5 .cse4 .cse1 .cse2) (and .cse5 .cse0 (<= ~waterLevel~0 1) .cse2))) [2024-11-13 13:40:50,344 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 13.11 01:40:50 BoogieIcfgContainer [2024-11-13 13:40:50,344 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-13 13:40:50,345 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-13 13:40:50,345 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-13 13:40:50,345 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-13 13:40:50,346 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 13.11 01:40:35" (3/4) ... [2024-11-13 13:40:50,348 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-13 13:40:50,353 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-13 13:40:50,353 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-13 13:40:50,354 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-13 13:40:50,354 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-13 13:40:50,354 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-13 13:40:50,354 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-13 13:40:50,354 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-13 13:40:50,360 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 21 nodes and edges [2024-11-13 13:40:50,360 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-13 13:40:50,361 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-13 13:40:50,361 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-13 13:40:50,362 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-13 13:40:50,477 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/witness.graphml [2024-11-13 13:40:50,477 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/witness.yml [2024-11-13 13:40:50,477 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-13 13:40:50,478 INFO L158 Benchmark]: Toolchain (without parser) took 16518.10ms. Allocated memory was 142.6MB in the beginning and 176.2MB in the end (delta: 33.6MB). Free memory was 116.3MB in the beginning and 58.2MB in the end (delta: 58.1MB). Peak memory consumption was 91.4MB. Max. memory is 16.1GB. [2024-11-13 13:40:50,479 INFO L158 Benchmark]: CDTParser took 0.43ms. Allocated memory is still 117.4MB. Free memory is still 75.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-13 13:40:50,479 INFO L158 Benchmark]: CACSL2BoogieTranslator took 538.22ms. Allocated memory is still 142.6MB. Free memory was 116.1MB in the beginning and 97.3MB in the end (delta: 18.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-13 13:40:50,479 INFO L158 Benchmark]: Boogie Procedure Inliner took 60.94ms. Allocated memory is still 142.6MB. Free memory was 97.3MB in the beginning and 95.3MB in the end (delta: 2.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-13 13:40:50,480 INFO L158 Benchmark]: Boogie Preprocessor took 52.03ms. Allocated memory is still 142.6MB. Free memory was 95.3MB in the beginning and 93.5MB in the end (delta: 1.8MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-13 13:40:50,480 INFO L158 Benchmark]: RCFGBuilder took 517.70ms. Allocated memory is still 142.6MB. Free memory was 93.5MB in the beginning and 76.1MB in the end (delta: 17.4MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-13 13:40:50,480 INFO L158 Benchmark]: TraceAbstraction took 15208.70ms. Allocated memory was 142.6MB in the beginning and 176.2MB in the end (delta: 33.6MB). Free memory was 75.6MB in the beginning and 64.8MB in the end (delta: 10.8MB). Peak memory consumption was 58.9MB. Max. memory is 16.1GB. [2024-11-13 13:40:50,480 INFO L158 Benchmark]: Witness Printer took 132.59ms. Allocated memory is still 176.2MB. Free memory was 64.8MB in the beginning and 58.2MB in the end (delta: 6.6MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-13 13:40:50,482 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.43ms. Allocated memory is still 117.4MB. Free memory is still 75.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 538.22ms. Allocated memory is still 142.6MB. Free memory was 116.1MB in the beginning and 97.3MB in the end (delta: 18.8MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 60.94ms. Allocated memory is still 142.6MB. Free memory was 97.3MB in the beginning and 95.3MB in the end (delta: 2.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Boogie Preprocessor took 52.03ms. Allocated memory is still 142.6MB. Free memory was 95.3MB in the beginning and 93.5MB in the end (delta: 1.8MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 517.70ms. Allocated memory is still 142.6MB. Free memory was 93.5MB in the beginning and 76.1MB in the end (delta: 17.4MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * TraceAbstraction took 15208.70ms. Allocated memory was 142.6MB in the beginning and 176.2MB in the end (delta: 33.6MB). Free memory was 75.6MB in the beginning and 64.8MB in the end (delta: 10.8MB). Peak memory consumption was 58.9MB. Max. memory is 16.1GB. * Witness Printer took 132.59ms. Allocated memory is still 176.2MB. Free memory was 64.8MB in the beginning and 58.2MB in the end (delta: 6.6MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [49] - GenericResultAtLocation [Line: 153]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [153] - GenericResultAtLocation [Line: 188]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [188] - GenericResultAtLocation [Line: 554]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [554] - GenericResultAtLocation [Line: 563]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [563] - GenericResultAtLocation [Line: 672]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [672] - GenericResultAtLocation [Line: 707]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [707] - GenericResultAtLocation [Line: 775]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [775] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 559]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 94 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 10.5s, OverallIterations: 12, TraceHistogramMax: 3, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 5.5s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1896 SdHoareTripleChecker+Valid, 3.5s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1868 mSDsluCounter, 4277 SdHoareTripleChecker+Invalid, 2.9s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3199 mSDsCounter, 446 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3643 IncrementalHoareTripleChecker+Invalid, 4089 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 446 mSolverCounterUnsat, 1078 mSDtfsCounter, 3643 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 476 GetRequests, 323 SyntacticMatches, 7 SemanticMatches, 146 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 525 ImplicationChecksByTransitivity, 1.6s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=770occurred in iteration=9, InterpolantAutomatonStates: 130, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.6s AutomataMinimizationTime, 12 MinimizatonAttempts, 34 StatesRemovedByMinimization, 7 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.3s SatisfiabilityAnalysisTime, 3.0s InterpolantComputationTime, 730 NumberOfCodeBlocks, 730 NumberOfCodeBlocksAsserted, 14 NumberOfCheckSat, 804 ConstructedInterpolants, 0 QuantifiedInterpolants, 1547 SizeOfPredicates, 2 NumberOfNonLiveVariables, 535 ConjunctsInSsa, 28 ConjunctsInUnsatCore, 15 InterpolantComputations, 11 PerfectInterpolantSequences, 74/93 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 718]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 719]: Loop Invariant Derived loop invariant: ((((((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (0 != systemActive)) || (((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || (((((methaneLevelCritical == 0) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || (((((1 <= methaneLevelCritical) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) - InvariantResult [Line: 62]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 805]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 1)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (0 != systemActive))) Ensures: ((((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 1)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (0 != systemActive))) && ((((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 596]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive))) Ensures: ((((((((((\old(methaneLevelCritical) == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= \old(methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (\old(methaneLevelCritical) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (1 <= \old(methaneLevelCritical))) && (waterLevel <= 2)) && (0 != systemActive))) && ((\old(methaneLevelCritical) != 0) || (0 < methaneLevelCritical))) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) < 1))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 608]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive))) Ensures: (((\result == methaneLevelCritical) && (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 2)) && (0 != systemActive)))) && ((((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 781]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((((waterLevel <= 1) && (waterLevel <= \old(waterLevel))) && (pumpRunning == 1)) || (\old(pumpRunning) != 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (waterLevel <= \old(waterLevel)))) && (((((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 2)) && (0 != systemActive)) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 2)) && (0 != systemActive))) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 2)) && (0 != systemActive)))) && (((methaneLevelCritical != 0) || (waterLevel < 2)) || (pumpRunning == 1))) && (((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || ((\old(waterLevel) == waterLevel) && (pumpRunning == 1)))) && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 52]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 813]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: (((((((((((1 <= methaneLevelCritical) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive)) || ((((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (\old(pumpRunning) == 1)) && (0 != systemActive))) && (((methaneLevelCritical != 0) || (waterLevel < 2)) || (pumpRunning == 1))) && ((\old(pumpRunning) != 1) || (pumpRunning == 1))) && ((pumpRunning == 0) || (pumpRunning == 1))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 584]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: (((((((methaneLevelCritical == 0) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1)) || ((((1 <= methaneLevelCritical) && (waterLevel <= 2)) && (0 != systemActive)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (waterLevel <= 2)) && (0 != systemActive))) || ((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (waterLevel <= 1)) && (0 != systemActive))) Ensures: (((((waterLevel <= ((long long) \old(waterLevel) + 1)) && (waterLevel <= 2)) && (0 != systemActive)) && ((((((methaneLevelCritical == 0) && (\old(waterLevel) <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (\old(waterLevel) <= 2))) || (((pumpRunning == 0) && (methaneLevelCritical == 0)) && (\old(waterLevel) <= 1))) || (((1 <= methaneLevelCritical) && (\old(waterLevel) <= 2)) && (pumpRunning == 1)))) && (((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (head == \old(head))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive)))) RESULT: Ultimate proved your program to be correct! [2024-11-13 13:40:50,521 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_b65c8f09-c4ac-4d11-aa22-16da320003f9/bin/uautomizer-verify-qhAvR1uOyd/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE