./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec5_product37.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 3061b6dc Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec5_product37.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 3ab30b3db91b0e47e6f9b2ed9ba465facc49148e5cdc1cad78e4808ba0c7de84 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-3061b6d-m [2024-11-18 14:21:38,354 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-18 14:21:38,445 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-18 14:21:38,449 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-18 14:21:38,453 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-18 14:21:38,486 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-18 14:21:38,487 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-18 14:21:38,487 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-18 14:21:38,488 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-18 14:21:38,489 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-18 14:21:38,490 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-18 14:21:38,490 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-18 14:21:38,491 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-18 14:21:38,491 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-18 14:21:38,491 INFO L153 SettingsManager]: * Use SBE=true [2024-11-18 14:21:38,493 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-18 14:21:38,494 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-18 14:21:38,494 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-18 14:21:38,494 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-18 14:21:38,494 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-18 14:21:38,495 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-18 14:21:38,495 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-18 14:21:38,498 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-18 14:21:38,499 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-18 14:21:38,499 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-18 14:21:38,499 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-18 14:21:38,499 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-18 14:21:38,499 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-18 14:21:38,500 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-18 14:21:38,500 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-18 14:21:38,500 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-18 14:21:38,501 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-18 14:21:38,501 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:21:38,502 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-18 14:21:38,502 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-18 14:21:38,502 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-18 14:21:38,503 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-18 14:21:38,503 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-18 14:21:38,503 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-18 14:21:38,503 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-18 14:21:38,503 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-18 14:21:38,504 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-18 14:21:38,504 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 3ab30b3db91b0e47e6f9b2ed9ba465facc49148e5cdc1cad78e4808ba0c7de84 [2024-11-18 14:21:38,747 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-18 14:21:38,775 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-18 14:21:38,779 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-18 14:21:38,780 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-18 14:21:38,781 INFO L274 PluginConnector]: CDTParser initialized [2024-11-18 14:21:38,783 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec5_product37.cil.c [2024-11-18 14:21:40,203 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-18 14:21:40,431 INFO L384 CDTParser]: Found 1 translation units. [2024-11-18 14:21:40,432 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product37.cil.c [2024-11-18 14:21:40,446 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/7d6548f07/65432659d8f94abeae3bb616298aa07c/FLAG14fe39e12 [2024-11-18 14:21:40,461 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/7d6548f07/65432659d8f94abeae3bb616298aa07c [2024-11-18 14:21:40,464 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-18 14:21:40,466 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-18 14:21:40,468 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-18 14:21:40,468 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-18 14:21:40,474 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-18 14:21:40,475 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:40,478 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@674f253 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40, skipping insertion in model container [2024-11-18 14:21:40,478 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:40,525 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-18 14:21:40,808 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product37.cil.c[5071,5084] [2024-11-18 14:21:40,870 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:21:40,883 INFO L200 MainTranslator]: Completed pre-run [2024-11-18 14:21:40,892 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2024-11-18 14:21:40,894 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [150] [2024-11-18 14:21:40,894 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [201] [2024-11-18 14:21:40,894 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [304] [2024-11-18 14:21:40,895 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [313] [2024-11-18 14:21:40,895 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [496] [2024-11-18 14:21:40,895 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [561] [2024-11-18 14:21:40,895 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [596] [2024-11-18 14:21:40,918 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product37.cil.c[5071,5084] [2024-11-18 14:21:40,964 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:21:40,989 INFO L204 MainTranslator]: Completed translation [2024-11-18 14:21:40,989 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40 WrapperNode [2024-11-18 14:21:40,989 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-18 14:21:40,990 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-18 14:21:40,991 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-18 14:21:40,991 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-18 14:21:40,997 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,012 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,041 INFO L138 Inliner]: procedures = 55, calls = 100, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 203 [2024-11-18 14:21:41,042 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-18 14:21:41,042 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-18 14:21:41,043 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-18 14:21:41,043 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-18 14:21:41,053 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,054 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,057 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,077 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-18 14:21:41,077 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,077 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,081 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,084 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,086 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,087 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,089 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-18 14:21:41,089 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-18 14:21:41,090 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-18 14:21:41,090 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-18 14:21:41,091 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (1/1) ... [2024-11-18 14:21:41,096 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:21:41,106 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:41,129 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-18 14:21:41,133 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-18 14:21:41,177 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-18 14:21:41,178 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-18 14:21:41,178 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-18 14:21:41,178 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-18 14:21:41,178 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-18 14:21:41,178 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-18 14:21:41,178 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-18 14:21:41,178 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:21:41,178 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:21:41,178 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-18 14:21:41,179 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-18 14:21:41,179 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-18 14:21:41,179 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-18 14:21:41,179 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-18 14:21:41,179 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-18 14:21:41,180 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-18 14:21:41,180 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-18 14:21:41,181 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-18 14:21:41,260 INFO L238 CfgBuilder]: Building ICFG [2024-11-18 14:21:41,261 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-18 14:21:41,530 INFO L? ?]: Removed 42 outVars from TransFormulas that were not future-live. [2024-11-18 14:21:41,531 INFO L287 CfgBuilder]: Performing block encoding [2024-11-18 14:21:41,548 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-18 14:21:41,548 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-18 14:21:41,548 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:41 BoogieIcfgContainer [2024-11-18 14:21:41,549 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-18 14:21:41,550 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-18 14:21:41,550 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-18 14:21:41,553 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-18 14:21:41,553 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 18.11 02:21:40" (1/3) ... [2024-11-18 14:21:41,554 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@677b4879 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:21:41, skipping insertion in model container [2024-11-18 14:21:41,554 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:40" (2/3) ... [2024-11-18 14:21:41,554 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@677b4879 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:21:41, skipping insertion in model container [2024-11-18 14:21:41,554 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:41" (3/3) ... [2024-11-18 14:21:41,555 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product37.cil.c [2024-11-18 14:21:41,567 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-18 14:21:41,568 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-18 14:21:41,628 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-18 14:21:41,634 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@33ffb5e7, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-18 14:21:41,634 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-18 14:21:41,638 INFO L276 IsEmpty]: Start isEmpty. Operand has 90 states, 69 states have (on average 1.3768115942028984) internal successors, (95), 77 states have internal predecessors, (95), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-18 14:21:41,648 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-18 14:21:41,648 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:41,649 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:41,649 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:41,657 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:41,658 INFO L85 PathProgramCache]: Analyzing trace with hash 1723855951, now seen corresponding path program 1 times [2024-11-18 14:21:41,665 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:41,665 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2044196394] [2024-11-18 14:21:41,665 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:41,666 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:41,781 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:41,869 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:41,869 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:41,870 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2044196394] [2024-11-18 14:21:41,871 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2044196394] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:41,872 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:41,872 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-18 14:21:41,874 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [187201144] [2024-11-18 14:21:41,875 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:41,878 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-18 14:21:41,879 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:41,898 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-18 14:21:41,899 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:21:41,901 INFO L87 Difference]: Start difference. First operand has 90 states, 69 states have (on average 1.3768115942028984) internal successors, (95), 77 states have internal predecessors, (95), 12 states have call successors, (12), 7 states have call predecessors, (12), 7 states have return successors, (12), 10 states have call predecessors, (12), 12 states have call successors, (12) Second operand has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:41,926 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:41,927 INFO L93 Difference]: Finished difference Result 171 states and 232 transitions. [2024-11-18 14:21:41,928 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-18 14:21:41,929 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 32 [2024-11-18 14:21:41,930 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:41,938 INFO L225 Difference]: With dead ends: 171 [2024-11-18 14:21:41,938 INFO L226 Difference]: Without dead ends: 81 [2024-11-18 14:21:41,942 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:21:41,945 INFO L432 NwaCegarLoop]: 113 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 113 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:41,946 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 113 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:41,960 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 81 states. [2024-11-18 14:21:41,988 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 81 to 81. [2024-11-18 14:21:41,989 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 81 states, 62 states have (on average 1.3064516129032258) internal successors, (81), 69 states have internal predecessors, (81), 12 states have call successors, (12), 7 states have call predecessors, (12), 6 states have return successors, (11), 9 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-18 14:21:41,991 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 81 states to 81 states and 104 transitions. [2024-11-18 14:21:41,993 INFO L78 Accepts]: Start accepts. Automaton has 81 states and 104 transitions. Word has length 32 [2024-11-18 14:21:41,993 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:41,994 INFO L471 AbstractCegarLoop]: Abstraction has 81 states and 104 transitions. [2024-11-18 14:21:41,994 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:41,994 INFO L276 IsEmpty]: Start isEmpty. Operand 81 states and 104 transitions. [2024-11-18 14:21:42,001 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2024-11-18 14:21:42,001 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:42,001 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:42,002 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-18 14:21:42,002 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:42,003 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:42,003 INFO L85 PathProgramCache]: Analyzing trace with hash -1860405445, now seen corresponding path program 1 times [2024-11-18 14:21:42,005 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:42,005 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [735981686] [2024-11-18 14:21:42,006 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:42,006 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:42,044 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:42,187 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:42,187 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:42,188 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [735981686] [2024-11-18 14:21:42,188 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [735981686] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:42,188 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:42,188 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:42,188 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1772933436] [2024-11-18 14:21:42,188 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:42,190 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:42,190 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:42,191 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:42,192 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:42,192 INFO L87 Difference]: Start difference. First operand 81 states and 104 transitions. Second operand has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:42,214 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:42,215 INFO L93 Difference]: Finished difference Result 127 states and 163 transitions. [2024-11-18 14:21:42,216 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:42,216 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 33 [2024-11-18 14:21:42,216 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:42,218 INFO L225 Difference]: With dead ends: 127 [2024-11-18 14:21:42,219 INFO L226 Difference]: Without dead ends: 72 [2024-11-18 14:21:42,219 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:42,221 INFO L432 NwaCegarLoop]: 91 mSDtfsCounter, 12 mSDsluCounter, 75 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 166 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:42,222 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 166 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:42,223 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 72 states. [2024-11-18 14:21:42,233 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 72 to 72. [2024-11-18 14:21:42,234 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 72 states, 56 states have (on average 1.3214285714285714) internal successors, (74), 63 states have internal predecessors, (74), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2024-11-18 14:21:42,236 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 72 states to 72 states and 92 transitions. [2024-11-18 14:21:42,237 INFO L78 Accepts]: Start accepts. Automaton has 72 states and 92 transitions. Word has length 33 [2024-11-18 14:21:42,237 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:42,237 INFO L471 AbstractCegarLoop]: Abstraction has 72 states and 92 transitions. [2024-11-18 14:21:42,237 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:42,238 INFO L276 IsEmpty]: Start isEmpty. Operand 72 states and 92 transitions. [2024-11-18 14:21:42,239 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2024-11-18 14:21:42,239 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:42,239 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:42,239 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-18 14:21:42,240 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:42,240 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:42,241 INFO L85 PathProgramCache]: Analyzing trace with hash 1706700211, now seen corresponding path program 1 times [2024-11-18 14:21:42,241 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:42,241 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [678811206] [2024-11-18 14:21:42,241 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:42,243 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:42,277 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:42,374 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:42,375 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:42,375 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [678811206] [2024-11-18 14:21:42,375 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [678811206] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:42,375 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:42,375 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:42,375 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2143310017] [2024-11-18 14:21:42,376 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:42,376 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:42,376 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:42,377 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:42,377 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:42,377 INFO L87 Difference]: Start difference. First operand 72 states and 92 transitions. Second operand has 3 states, 3 states have (on average 10.0) internal successors, (30), 3 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:42,396 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:42,396 INFO L93 Difference]: Finished difference Result 136 states and 177 transitions. [2024-11-18 14:21:42,397 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:42,397 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 10.0) internal successors, (30), 3 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 37 [2024-11-18 14:21:42,398 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:42,399 INFO L225 Difference]: With dead ends: 136 [2024-11-18 14:21:42,399 INFO L226 Difference]: Without dead ends: 72 [2024-11-18 14:21:42,400 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:42,401 INFO L432 NwaCegarLoop]: 90 mSDtfsCounter, 69 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 69 SdHoareTripleChecker+Valid, 90 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:42,401 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [69 Valid, 90 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:42,402 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 72 states. [2024-11-18 14:21:42,409 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 72 to 72. [2024-11-18 14:21:42,409 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 72 states, 56 states have (on average 1.3035714285714286) internal successors, (73), 63 states have internal predecessors, (73), 9 states have call successors, (9), 6 states have call predecessors, (9), 6 states have return successors, (9), 7 states have call predecessors, (9), 9 states have call successors, (9) [2024-11-18 14:21:42,410 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 72 states to 72 states and 91 transitions. [2024-11-18 14:21:42,410 INFO L78 Accepts]: Start accepts. Automaton has 72 states and 91 transitions. Word has length 37 [2024-11-18 14:21:42,411 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:42,412 INFO L471 AbstractCegarLoop]: Abstraction has 72 states and 91 transitions. [2024-11-18 14:21:42,412 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 10.0) internal successors, (30), 3 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:42,412 INFO L276 IsEmpty]: Start isEmpty. Operand 72 states and 91 transitions. [2024-11-18 14:21:42,413 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2024-11-18 14:21:42,413 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:42,413 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:42,414 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-18 14:21:42,414 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:42,414 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:42,415 INFO L85 PathProgramCache]: Analyzing trace with hash 2032099452, now seen corresponding path program 1 times [2024-11-18 14:21:42,415 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:42,415 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [168963638] [2024-11-18 14:21:42,415 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:42,415 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:42,435 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:42,473 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:42,473 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:42,473 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [168963638] [2024-11-18 14:21:42,473 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [168963638] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:42,474 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:42,474 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:42,474 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1544982668] [2024-11-18 14:21:42,474 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:42,474 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:42,475 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:42,476 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:42,476 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:42,476 INFO L87 Difference]: Start difference. First operand 72 states and 91 transitions. Second operand has 3 states, 3 states have (on average 12.0) internal successors, (36), 3 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:42,518 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:42,518 INFO L93 Difference]: Finished difference Result 183 states and 238 transitions. [2024-11-18 14:21:42,519 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:42,519 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 12.0) internal successors, (36), 3 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 43 [2024-11-18 14:21:42,519 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:42,520 INFO L225 Difference]: With dead ends: 183 [2024-11-18 14:21:42,520 INFO L226 Difference]: Without dead ends: 119 [2024-11-18 14:21:42,521 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:42,521 INFO L432 NwaCegarLoop]: 106 mSDtfsCounter, 74 mSDsluCounter, 62 mSDsCounter, 0 mSdLazyCounter, 9 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 74 SdHoareTripleChecker+Valid, 168 SdHoareTripleChecker+Invalid, 15 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 9 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:42,522 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [74 Valid, 168 Invalid, 15 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 9 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:42,522 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 119 states. [2024-11-18 14:21:42,532 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 119 to 117. [2024-11-18 14:21:42,533 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 117 states, 90 states have (on average 1.288888888888889) internal successors, (116), 97 states have internal predecessors, (116), 14 states have call successors, (14), 12 states have call predecessors, (14), 12 states have return successors, (18), 14 states have call predecessors, (18), 14 states have call successors, (18) [2024-11-18 14:21:42,534 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 117 states to 117 states and 148 transitions. [2024-11-18 14:21:42,534 INFO L78 Accepts]: Start accepts. Automaton has 117 states and 148 transitions. Word has length 43 [2024-11-18 14:21:42,536 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:42,536 INFO L471 AbstractCegarLoop]: Abstraction has 117 states and 148 transitions. [2024-11-18 14:21:42,536 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 12.0) internal successors, (36), 3 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:42,537 INFO L276 IsEmpty]: Start isEmpty. Operand 117 states and 148 transitions. [2024-11-18 14:21:42,538 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-18 14:21:42,538 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:42,538 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:42,538 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-18 14:21:42,538 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:42,539 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:42,539 INFO L85 PathProgramCache]: Analyzing trace with hash -870205615, now seen corresponding path program 1 times [2024-11-18 14:21:42,539 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:42,539 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [794768992] [2024-11-18 14:21:42,539 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:42,539 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:42,563 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:42,679 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:42,679 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:42,679 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [794768992] [2024-11-18 14:21:42,680 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [794768992] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:42,680 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:42,680 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:21:42,680 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [294210444] [2024-11-18 14:21:42,680 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:42,680 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:21:42,681 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:42,681 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:21:42,681 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:42,682 INFO L87 Difference]: Start difference. First operand 117 states and 148 transitions. Second operand has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:42,736 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:42,739 INFO L93 Difference]: Finished difference Result 229 states and 296 transitions. [2024-11-18 14:21:42,739 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:21:42,740 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 51 [2024-11-18 14:21:42,740 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:42,741 INFO L225 Difference]: With dead ends: 229 [2024-11-18 14:21:42,744 INFO L226 Difference]: Without dead ends: 120 [2024-11-18 14:21:42,745 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:42,746 INFO L432 NwaCegarLoop]: 88 mSDtfsCounter, 0 mSDsluCounter, 258 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 346 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:42,746 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 346 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:42,747 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 120 states. [2024-11-18 14:21:42,762 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 120 to 120. [2024-11-18 14:21:42,762 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 120 states, 93 states have (on average 1.2795698924731183) internal successors, (119), 100 states have internal predecessors, (119), 14 states have call successors, (14), 12 states have call predecessors, (14), 12 states have return successors, (18), 14 states have call predecessors, (18), 14 states have call successors, (18) [2024-11-18 14:21:42,764 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 120 states to 120 states and 151 transitions. [2024-11-18 14:21:42,765 INFO L78 Accepts]: Start accepts. Automaton has 120 states and 151 transitions. Word has length 51 [2024-11-18 14:21:42,766 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:42,766 INFO L471 AbstractCegarLoop]: Abstraction has 120 states and 151 transitions. [2024-11-18 14:21:42,767 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:42,767 INFO L276 IsEmpty]: Start isEmpty. Operand 120 states and 151 transitions. [2024-11-18 14:21:42,769 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-18 14:21:42,772 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:42,772 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:42,772 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-18 14:21:42,772 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:42,773 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:42,773 INFO L85 PathProgramCache]: Analyzing trace with hash 1735817939, now seen corresponding path program 1 times [2024-11-18 14:21:42,773 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:42,773 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [925717329] [2024-11-18 14:21:42,773 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:42,773 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:42,797 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:42,895 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:42,895 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:42,895 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [925717329] [2024-11-18 14:21:42,896 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [925717329] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:42,896 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:42,896 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:21:42,896 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [804219847] [2024-11-18 14:21:42,896 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:42,897 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:21:42,897 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:42,898 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:21:42,898 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:42,898 INFO L87 Difference]: Start difference. First operand 120 states and 151 transitions. Second operand has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-18 14:21:42,947 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:42,948 INFO L93 Difference]: Finished difference Result 234 states and 305 transitions. [2024-11-18 14:21:42,948 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:21:42,948 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 51 [2024-11-18 14:21:42,949 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:42,950 INFO L225 Difference]: With dead ends: 234 [2024-11-18 14:21:42,950 INFO L226 Difference]: Without dead ends: 122 [2024-11-18 14:21:42,951 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-18 14:21:42,953 INFO L432 NwaCegarLoop]: 88 mSDtfsCounter, 71 mSDsluCounter, 170 mSDsCounter, 0 mSdLazyCounter, 14 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 71 SdHoareTripleChecker+Valid, 258 SdHoareTripleChecker+Invalid, 14 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 14 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:42,956 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [71 Valid, 258 Invalid, 14 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 14 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:42,957 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 122 states. [2024-11-18 14:21:42,974 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 122 to 122. [2024-11-18 14:21:42,975 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 122 states, 95 states have (on average 1.2736842105263158) internal successors, (121), 102 states have internal predecessors, (121), 14 states have call successors, (14), 12 states have call predecessors, (14), 12 states have return successors, (18), 14 states have call predecessors, (18), 14 states have call successors, (18) [2024-11-18 14:21:42,977 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 122 states to 122 states and 153 transitions. [2024-11-18 14:21:42,977 INFO L78 Accepts]: Start accepts. Automaton has 122 states and 153 transitions. Word has length 51 [2024-11-18 14:21:42,978 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:42,978 INFO L471 AbstractCegarLoop]: Abstraction has 122 states and 153 transitions. [2024-11-18 14:21:42,978 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.4) internal successors, (42), 5 states have internal predecessors, (42), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-18 14:21:42,978 INFO L276 IsEmpty]: Start isEmpty. Operand 122 states and 153 transitions. [2024-11-18 14:21:42,979 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 52 [2024-11-18 14:21:42,981 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:42,981 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:42,981 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-18 14:21:42,981 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:42,982 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:42,982 INFO L85 PathProgramCache]: Analyzing trace with hash -2136447531, now seen corresponding path program 1 times [2024-11-18 14:21:42,982 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:42,982 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1440699382] [2024-11-18 14:21:42,982 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:42,983 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:43,003 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:43,126 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:43,127 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:43,127 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1440699382] [2024-11-18 14:21:43,128 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1440699382] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:43,128 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:43,128 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:21:43,128 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [139290957] [2024-11-18 14:21:43,128 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:43,129 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:21:43,129 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:43,129 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:21:43,130 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:21:43,131 INFO L87 Difference]: Start difference. First operand 122 states and 153 transitions. Second operand has 4 states, 4 states have (on average 10.5) internal successors, (42), 4 states have internal predecessors, (42), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:43,267 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:43,268 INFO L93 Difference]: Finished difference Result 397 states and 516 transitions. [2024-11-18 14:21:43,269 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:21:43,269 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 10.5) internal successors, (42), 4 states have internal predecessors, (42), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 51 [2024-11-18 14:21:43,269 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:43,271 INFO L225 Difference]: With dead ends: 397 [2024-11-18 14:21:43,272 INFO L226 Difference]: Without dead ends: 283 [2024-11-18 14:21:43,274 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:21:43,275 INFO L432 NwaCegarLoop]: 159 mSDtfsCounter, 121 mSDsluCounter, 140 mSDsCounter, 0 mSdLazyCounter, 58 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 121 SdHoareTripleChecker+Valid, 299 SdHoareTripleChecker+Invalid, 63 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 58 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:43,275 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [121 Valid, 299 Invalid, 63 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 58 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:21:43,280 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 283 states. [2024-11-18 14:21:43,330 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 283 to 274. [2024-11-18 14:21:43,332 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 274 states, 211 states have (on average 1.2606635071090047) internal successors, (266), 224 states have internal predecessors, (266), 33 states have call successors, (33), 28 states have call predecessors, (33), 29 states have return successors, (51), 34 states have call predecessors, (51), 33 states have call successors, (51) [2024-11-18 14:21:43,334 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 274 states to 274 states and 350 transitions. [2024-11-18 14:21:43,335 INFO L78 Accepts]: Start accepts. Automaton has 274 states and 350 transitions. Word has length 51 [2024-11-18 14:21:43,336 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:43,337 INFO L471 AbstractCegarLoop]: Abstraction has 274 states and 350 transitions. [2024-11-18 14:21:43,337 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 10.5) internal successors, (42), 4 states have internal predecessors, (42), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:43,337 INFO L276 IsEmpty]: Start isEmpty. Operand 274 states and 350 transitions. [2024-11-18 14:21:43,339 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2024-11-18 14:21:43,339 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:43,339 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:43,339 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-18 14:21:43,339 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:43,340 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:43,340 INFO L85 PathProgramCache]: Analyzing trace with hash -1858186128, now seen corresponding path program 1 times [2024-11-18 14:21:43,340 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:43,341 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [802896311] [2024-11-18 14:21:43,341 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:43,341 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:43,358 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:43,468 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-18 14:21:43,469 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:43,469 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [802896311] [2024-11-18 14:21:43,470 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [802896311] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:43,470 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:43,470 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-18 14:21:43,470 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1105482589] [2024-11-18 14:21:43,470 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:43,471 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-18 14:21:43,471 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:43,472 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-18 14:21:43,472 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-11-18 14:21:43,472 INFO L87 Difference]: Start difference. First operand 274 states and 350 transitions. Second operand has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 6 states have internal predecessors, (44), 3 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 4 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-18 14:21:43,736 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:43,736 INFO L93 Difference]: Finished difference Result 572 states and 741 transitions. [2024-11-18 14:21:43,738 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:21:43,738 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 6 states have internal predecessors, (44), 3 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 4 states have call predecessors, (4), 3 states have call successors, (4) Word has length 53 [2024-11-18 14:21:43,738 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:43,741 INFO L225 Difference]: With dead ends: 572 [2024-11-18 14:21:43,741 INFO L226 Difference]: Without dead ends: 306 [2024-11-18 14:21:43,745 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=48, Invalid=134, Unknown=0, NotChecked=0, Total=182 [2024-11-18 14:21:43,746 INFO L432 NwaCegarLoop]: 72 mSDtfsCounter, 121 mSDsluCounter, 294 mSDsCounter, 0 mSdLazyCounter, 171 mSolverCounterSat, 30 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 127 SdHoareTripleChecker+Valid, 366 SdHoareTripleChecker+Invalid, 201 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 30 IncrementalHoareTripleChecker+Valid, 171 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:43,746 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [127 Valid, 366 Invalid, 201 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [30 Valid, 171 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:21:43,747 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 306 states. [2024-11-18 14:21:43,784 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 306 to 304. [2024-11-18 14:21:43,785 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 304 states, 234 states have (on average 1.2307692307692308) internal successors, (288), 247 states have internal predecessors, (288), 36 states have call successors, (36), 28 states have call predecessors, (36), 33 states have return successors, (61), 38 states have call predecessors, (61), 36 states have call successors, (61) [2024-11-18 14:21:43,787 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 304 states to 304 states and 385 transitions. [2024-11-18 14:21:43,788 INFO L78 Accepts]: Start accepts. Automaton has 304 states and 385 transitions. Word has length 53 [2024-11-18 14:21:43,788 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:43,789 INFO L471 AbstractCegarLoop]: Abstraction has 304 states and 385 transitions. [2024-11-18 14:21:43,789 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.285714285714286) internal successors, (44), 6 states have internal predecessors, (44), 3 states have call successors, (5), 2 states have call predecessors, (5), 3 states have return successors, (4), 4 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-18 14:21:43,789 INFO L276 IsEmpty]: Start isEmpty. Operand 304 states and 385 transitions. [2024-11-18 14:21:43,790 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2024-11-18 14:21:43,791 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:43,791 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:43,791 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-18 14:21:43,795 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:43,795 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:43,796 INFO L85 PathProgramCache]: Analyzing trace with hash -2030829189, now seen corresponding path program 1 times [2024-11-18 14:21:43,796 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:43,796 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1183060389] [2024-11-18 14:21:43,796 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:43,796 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:43,820 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:43,977 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:43,977 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:43,977 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1183060389] [2024-11-18 14:21:43,977 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1183060389] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:43,977 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:43,977 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-18 14:21:43,978 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [64982589] [2024-11-18 14:21:43,978 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:43,978 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-18 14:21:43,978 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:43,979 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-18 14:21:43,979 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=41, Unknown=0, NotChecked=0, Total=56 [2024-11-18 14:21:43,979 INFO L87 Difference]: Start difference. First operand 304 states and 385 transitions. Second operand has 8 states, 8 states have (on average 5.5) internal successors, (44), 7 states have internal predecessors, (44), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-18 14:21:44,379 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:44,379 INFO L93 Difference]: Finished difference Result 864 states and 1143 transitions. [2024-11-18 14:21:44,379 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:21:44,380 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.5) internal successors, (44), 7 states have internal predecessors, (44), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) Word has length 55 [2024-11-18 14:21:44,381 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:44,385 INFO L225 Difference]: With dead ends: 864 [2024-11-18 14:21:44,385 INFO L226 Difference]: Without dead ends: 618 [2024-11-18 14:21:44,387 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=47, Invalid=109, Unknown=0, NotChecked=0, Total=156 [2024-11-18 14:21:44,388 INFO L432 NwaCegarLoop]: 119 mSDtfsCounter, 283 mSDsluCounter, 387 mSDsCounter, 0 mSdLazyCounter, 263 mSolverCounterSat, 56 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 289 SdHoareTripleChecker+Valid, 506 SdHoareTripleChecker+Invalid, 319 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 56 IncrementalHoareTripleChecker+Valid, 263 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:44,389 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [289 Valid, 506 Invalid, 319 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [56 Valid, 263 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-18 14:21:44,390 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 618 states. [2024-11-18 14:21:44,438 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 618 to 548. [2024-11-18 14:21:44,440 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 548 states, 418 states have (on average 1.2177033492822966) internal successors, (509), 444 states have internal predecessors, (509), 67 states have call successors, (67), 50 states have call predecessors, (67), 62 states have return successors, (113), 71 states have call predecessors, (113), 67 states have call successors, (113) [2024-11-18 14:21:44,443 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 548 states to 548 states and 689 transitions. [2024-11-18 14:21:44,444 INFO L78 Accepts]: Start accepts. Automaton has 548 states and 689 transitions. Word has length 55 [2024-11-18 14:21:44,444 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:44,445 INFO L471 AbstractCegarLoop]: Abstraction has 548 states and 689 transitions. [2024-11-18 14:21:44,445 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.5) internal successors, (44), 7 states have internal predecessors, (44), 3 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-18 14:21:44,445 INFO L276 IsEmpty]: Start isEmpty. Operand 548 states and 689 transitions. [2024-11-18 14:21:44,446 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 95 [2024-11-18 14:21:44,446 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:44,447 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:44,447 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-18 14:21:44,447 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:44,448 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:44,448 INFO L85 PathProgramCache]: Analyzing trace with hash 309041265, now seen corresponding path program 1 times [2024-11-18 14:21:44,448 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:44,448 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1265694229] [2024-11-18 14:21:44,448 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:44,448 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:44,466 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:44,599 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 8 proven. 18 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2024-11-18 14:21:44,600 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:44,600 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1265694229] [2024-11-18 14:21:44,600 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1265694229] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:44,600 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1392195812] [2024-11-18 14:21:44,600 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:44,601 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:44,601 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:44,603 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:44,604 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-18 14:21:44,707 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:44,710 INFO L255 TraceCheckSpWp]: Trace formula consists of 312 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-18 14:21:44,724 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:44,926 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 24 proven. 9 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-18 14:21:44,927 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:45,178 INFO L134 CoverageAnalysis]: Checked inductivity of 33 backedges. 18 proven. 8 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2024-11-18 14:21:45,178 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1392195812] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:45,178 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:45,179 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 15 [2024-11-18 14:21:45,179 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1930285857] [2024-11-18 14:21:45,179 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:45,180 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-11-18 14:21:45,180 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:45,181 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-11-18 14:21:45,181 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=41, Invalid=169, Unknown=0, NotChecked=0, Total=210 [2024-11-18 14:21:45,181 INFO L87 Difference]: Start difference. First operand 548 states and 689 transitions. Second operand has 15 states, 15 states have (on average 9.133333333333333) internal successors, (137), 13 states have internal predecessors, (137), 7 states have call successors, (20), 4 states have call predecessors, (20), 8 states have return successors, (18), 9 states have call predecessors, (18), 7 states have call successors, (18) [2024-11-18 14:21:45,624 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:45,624 INFO L93 Difference]: Finished difference Result 1224 states and 1606 transitions. [2024-11-18 14:21:45,625 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-11-18 14:21:45,626 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 9.133333333333333) internal successors, (137), 13 states have internal predecessors, (137), 7 states have call successors, (20), 4 states have call predecessors, (20), 8 states have return successors, (18), 9 states have call predecessors, (18), 7 states have call successors, (18) Word has length 94 [2024-11-18 14:21:45,626 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:45,630 INFO L225 Difference]: With dead ends: 1224 [2024-11-18 14:21:45,631 INFO L226 Difference]: Without dead ends: 732 [2024-11-18 14:21:45,633 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 216 GetRequests, 185 SyntacticMatches, 4 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 164 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=208, Invalid=604, Unknown=0, NotChecked=0, Total=812 [2024-11-18 14:21:45,634 INFO L432 NwaCegarLoop]: 197 mSDtfsCounter, 417 mSDsluCounter, 655 mSDsCounter, 0 mSdLazyCounter, 181 mSolverCounterSat, 137 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 419 SdHoareTripleChecker+Valid, 852 SdHoareTripleChecker+Invalid, 318 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 137 IncrementalHoareTripleChecker+Valid, 181 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:45,635 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [419 Valid, 852 Invalid, 318 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [137 Valid, 181 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:21:45,636 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 732 states. [2024-11-18 14:21:45,691 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 732 to 635. [2024-11-18 14:21:45,693 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 635 states, 478 states have (on average 1.213389121338912) internal successors, (580), 513 states have internal predecessors, (580), 80 states have call successors, (80), 68 states have call predecessors, (80), 76 states have return successors, (116), 78 states have call predecessors, (116), 80 states have call successors, (116) [2024-11-18 14:21:45,696 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 635 states to 635 states and 776 transitions. [2024-11-18 14:21:45,697 INFO L78 Accepts]: Start accepts. Automaton has 635 states and 776 transitions. Word has length 94 [2024-11-18 14:21:45,698 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:45,698 INFO L471 AbstractCegarLoop]: Abstraction has 635 states and 776 transitions. [2024-11-18 14:21:45,698 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 9.133333333333333) internal successors, (137), 13 states have internal predecessors, (137), 7 states have call successors, (20), 4 states have call predecessors, (20), 8 states have return successors, (18), 9 states have call predecessors, (18), 7 states have call successors, (18) [2024-11-18 14:21:45,698 INFO L276 IsEmpty]: Start isEmpty. Operand 635 states and 776 transitions. [2024-11-18 14:21:45,701 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 169 [2024-11-18 14:21:45,702 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:45,702 INFO L215 NwaCegarLoop]: trace histogram [5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:45,721 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-18 14:21:45,902 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-18 14:21:45,903 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:45,903 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:45,904 INFO L85 PathProgramCache]: Analyzing trace with hash 1424558119, now seen corresponding path program 1 times [2024-11-18 14:21:45,904 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:45,904 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1303195782] [2024-11-18 14:21:45,904 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:45,904 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:45,931 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:46,135 INFO L134 CoverageAnalysis]: Checked inductivity of 188 backedges. 94 proven. 7 refuted. 0 times theorem prover too weak. 87 trivial. 0 not checked. [2024-11-18 14:21:46,135 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:46,135 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1303195782] [2024-11-18 14:21:46,136 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1303195782] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:46,136 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1250102829] [2024-11-18 14:21:46,136 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:46,136 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:46,136 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:46,138 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:46,139 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-18 14:21:46,259 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:46,262 INFO L255 TraceCheckSpWp]: Trace formula consists of 496 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-18 14:21:46,266 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:46,480 INFO L134 CoverageAnalysis]: Checked inductivity of 188 backedges. 138 proven. 4 refuted. 0 times theorem prover too weak. 46 trivial. 0 not checked. [2024-11-18 14:21:46,481 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:46,922 INFO L134 CoverageAnalysis]: Checked inductivity of 188 backedges. 78 proven. 42 refuted. 0 times theorem prover too weak. 68 trivial. 0 not checked. [2024-11-18 14:21:46,922 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1250102829] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:46,922 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:46,922 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 10, 11] total 22 [2024-11-18 14:21:46,922 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1357609253] [2024-11-18 14:21:46,922 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:46,923 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-11-18 14:21:46,923 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:46,924 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-11-18 14:21:46,924 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=96, Invalid=366, Unknown=0, NotChecked=0, Total=462 [2024-11-18 14:21:46,924 INFO L87 Difference]: Start difference. First operand 635 states and 776 transitions. Second operand has 22 states, 22 states have (on average 9.272727272727273) internal successors, (204), 21 states have internal predecessors, (204), 9 states have call successors, (27), 5 states have call predecessors, (27), 10 states have return successors, (30), 8 states have call predecessors, (30), 9 states have call successors, (30) [2024-11-18 14:21:48,425 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,426 INFO L93 Difference]: Finished difference Result 1917 states and 2461 transitions. [2024-11-18 14:21:48,428 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 36 states. [2024-11-18 14:21:48,429 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 22 states have (on average 9.272727272727273) internal successors, (204), 21 states have internal predecessors, (204), 9 states have call successors, (27), 5 states have call predecessors, (27), 10 states have return successors, (30), 8 states have call predecessors, (30), 9 states have call successors, (30) Word has length 168 [2024-11-18 14:21:48,429 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,436 INFO L225 Difference]: With dead ends: 1917 [2024-11-18 14:21:48,436 INFO L226 Difference]: Without dead ends: 1260 [2024-11-18 14:21:48,440 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 388 GetRequests, 331 SyntacticMatches, 3 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 661 ImplicationChecksByTransitivity, 0.7s TimeCoverageRelationStatistics Valid=650, Invalid=2430, Unknown=0, NotChecked=0, Total=3080 [2024-11-18 14:21:48,441 INFO L432 NwaCegarLoop]: 103 mSDtfsCounter, 843 mSDsluCounter, 795 mSDsCounter, 0 mSdLazyCounter, 1189 mSolverCounterSat, 312 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 843 SdHoareTripleChecker+Valid, 898 SdHoareTripleChecker+Invalid, 1501 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 312 IncrementalHoareTripleChecker+Valid, 1189 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,441 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [843 Valid, 898 Invalid, 1501 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [312 Valid, 1189 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-11-18 14:21:48,442 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1260 states. [2024-11-18 14:21:48,531 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1260 to 1172. [2024-11-18 14:21:48,533 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1172 states, 889 states have (on average 1.1586051743532058) internal successors, (1030), 937 states have internal predecessors, (1030), 151 states have call successors, (151), 133 states have call predecessors, (151), 131 states have return successors, (185), 132 states have call predecessors, (185), 151 states have call successors, (185) [2024-11-18 14:21:48,538 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1172 states to 1172 states and 1366 transitions. [2024-11-18 14:21:48,540 INFO L78 Accepts]: Start accepts. Automaton has 1172 states and 1366 transitions. Word has length 168 [2024-11-18 14:21:48,540 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,540 INFO L471 AbstractCegarLoop]: Abstraction has 1172 states and 1366 transitions. [2024-11-18 14:21:48,541 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 22 states have (on average 9.272727272727273) internal successors, (204), 21 states have internal predecessors, (204), 9 states have call successors, (27), 5 states have call predecessors, (27), 10 states have return successors, (30), 8 states have call predecessors, (30), 9 states have call successors, (30) [2024-11-18 14:21:48,541 INFO L276 IsEmpty]: Start isEmpty. Operand 1172 states and 1366 transitions. [2024-11-18 14:21:48,544 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 185 [2024-11-18 14:21:48,545 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,545 INFO L215 NwaCegarLoop]: trace histogram [7, 7, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,563 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-18 14:21:48,749 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-18 14:21:48,750 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,751 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,751 INFO L85 PathProgramCache]: Analyzing trace with hash 126290915, now seen corresponding path program 1 times [2024-11-18 14:21:48,751 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,751 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [276673300] [2024-11-18 14:21:48,751 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,752 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,772 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,985 INFO L134 CoverageAnalysis]: Checked inductivity of 230 backedges. 89 proven. 64 refuted. 0 times theorem prover too weak. 77 trivial. 0 not checked. [2024-11-18 14:21:48,985 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,985 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [276673300] [2024-11-18 14:21:48,985 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [276673300] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:48,985 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1099578106] [2024-11-18 14:21:48,985 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,985 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:48,986 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:48,987 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:48,989 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-18 14:21:49,108 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,111 INFO L255 TraceCheckSpWp]: Trace formula consists of 538 conjuncts, 10 conjuncts are in the unsatisfiable core [2024-11-18 14:21:49,119 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:49,281 INFO L134 CoverageAnalysis]: Checked inductivity of 230 backedges. 175 proven. 9 refuted. 0 times theorem prover too weak. 46 trivial. 0 not checked. [2024-11-18 14:21:49,281 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:49,683 INFO L134 CoverageAnalysis]: Checked inductivity of 230 backedges. 99 proven. 53 refuted. 0 times theorem prover too weak. 78 trivial. 0 not checked. [2024-11-18 14:21:49,684 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1099578106] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:49,684 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:49,684 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 8, 8] total 23 [2024-11-18 14:21:49,684 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [457417502] [2024-11-18 14:21:49,684 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:49,685 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-11-18 14:21:49,685 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:49,686 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-11-18 14:21:49,686 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=81, Invalid=425, Unknown=0, NotChecked=0, Total=506 [2024-11-18 14:21:49,687 INFO L87 Difference]: Start difference. First operand 1172 states and 1366 transitions. Second operand has 23 states, 23 states have (on average 10.0) internal successors, (230), 20 states have internal predecessors, (230), 9 states have call successors, (35), 5 states have call predecessors, (35), 14 states have return successors, (35), 12 states have call predecessors, (35), 9 states have call successors, (35) [2024-11-18 14:21:50,352 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:50,352 INFO L93 Difference]: Finished difference Result 2293 states and 2702 transitions. [2024-11-18 14:21:50,353 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-11-18 14:21:50,353 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 23 states have (on average 10.0) internal successors, (230), 20 states have internal predecessors, (230), 9 states have call successors, (35), 5 states have call predecessors, (35), 14 states have return successors, (35), 12 states have call predecessors, (35), 9 states have call successors, (35) Word has length 184 [2024-11-18 14:21:50,353 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:50,360 INFO L225 Difference]: With dead ends: 2293 [2024-11-18 14:21:50,360 INFO L226 Difference]: Without dead ends: 1225 [2024-11-18 14:21:50,364 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 401 GetRequests, 364 SyntacticMatches, 1 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 213 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=299, Invalid=1107, Unknown=0, NotChecked=0, Total=1406 [2024-11-18 14:21:50,364 INFO L432 NwaCegarLoop]: 102 mSDtfsCounter, 449 mSDsluCounter, 553 mSDsCounter, 0 mSdLazyCounter, 521 mSolverCounterSat, 173 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 452 SdHoareTripleChecker+Valid, 655 SdHoareTripleChecker+Invalid, 694 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 173 IncrementalHoareTripleChecker+Valid, 521 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:50,365 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [452 Valid, 655 Invalid, 694 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [173 Valid, 521 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-18 14:21:50,366 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1225 states. [2024-11-18 14:21:50,471 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1225 to 1163. [2024-11-18 14:21:50,473 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1163 states, 885 states have (on average 1.1468926553672316) internal successors, (1015), 930 states have internal predecessors, (1015), 142 states have call successors, (142), 134 states have call predecessors, (142), 135 states have return successors, (176), 129 states have call predecessors, (176), 142 states have call successors, (176) [2024-11-18 14:21:50,478 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1163 states to 1163 states and 1333 transitions. [2024-11-18 14:21:50,479 INFO L78 Accepts]: Start accepts. Automaton has 1163 states and 1333 transitions. Word has length 184 [2024-11-18 14:21:50,480 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:50,480 INFO L471 AbstractCegarLoop]: Abstraction has 1163 states and 1333 transitions. [2024-11-18 14:21:50,480 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 23 states have (on average 10.0) internal successors, (230), 20 states have internal predecessors, (230), 9 states have call successors, (35), 5 states have call predecessors, (35), 14 states have return successors, (35), 12 states have call predecessors, (35), 9 states have call successors, (35) [2024-11-18 14:21:50,480 INFO L276 IsEmpty]: Start isEmpty. Operand 1163 states and 1333 transitions. [2024-11-18 14:21:50,483 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 186 [2024-11-18 14:21:50,484 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:50,484 INFO L215 NwaCegarLoop]: trace histogram [7, 7, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:50,503 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-18 14:21:50,684 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:50,685 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:50,685 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:50,685 INFO L85 PathProgramCache]: Analyzing trace with hash -2113019229, now seen corresponding path program 1 times [2024-11-18 14:21:50,686 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:50,686 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [197309811] [2024-11-18 14:21:50,686 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:50,686 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:50,707 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:51,329 INFO L134 CoverageAnalysis]: Checked inductivity of 231 backedges. 91 proven. 57 refuted. 0 times theorem prover too weak. 83 trivial. 0 not checked. [2024-11-18 14:21:51,330 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:51,330 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [197309811] [2024-11-18 14:21:51,330 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [197309811] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:51,330 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1282699221] [2024-11-18 14:21:51,330 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:51,330 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:51,330 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:51,332 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:51,333 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-18 14:21:51,446 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:51,449 INFO L255 TraceCheckSpWp]: Trace formula consists of 538 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-18 14:21:51,455 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:51,643 INFO L134 CoverageAnalysis]: Checked inductivity of 231 backedges. 122 proven. 26 refuted. 0 times theorem prover too weak. 83 trivial. 0 not checked. [2024-11-18 14:21:51,644 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:52,201 INFO L134 CoverageAnalysis]: Checked inductivity of 231 backedges. 95 proven. 45 refuted. 0 times theorem prover too weak. 91 trivial. 0 not checked. [2024-11-18 14:21:52,201 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1282699221] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:52,202 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:52,202 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 8, 13] total 22 [2024-11-18 14:21:52,202 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1950545795] [2024-11-18 14:21:52,202 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:52,203 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-11-18 14:21:52,203 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:52,204 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-11-18 14:21:52,205 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=121, Invalid=341, Unknown=0, NotChecked=0, Total=462 [2024-11-18 14:21:52,205 INFO L87 Difference]: Start difference. First operand 1163 states and 1333 transitions. Second operand has 22 states, 22 states have (on average 10.590909090909092) internal successors, (233), 21 states have internal predecessors, (233), 14 states have call successors, (38), 8 states have call predecessors, (38), 14 states have return successors, (37), 14 states have call predecessors, (37), 14 states have call successors, (37) [2024-11-18 14:21:53,054 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:53,054 INFO L93 Difference]: Finished difference Result 2230 states and 2613 transitions. [2024-11-18 14:21:53,055 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-18 14:21:53,055 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 22 states have (on average 10.590909090909092) internal successors, (233), 21 states have internal predecessors, (233), 14 states have call successors, (38), 8 states have call predecessors, (38), 14 states have return successors, (37), 14 states have call predecessors, (37), 14 states have call successors, (37) Word has length 185 [2024-11-18 14:21:53,056 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:53,063 INFO L225 Difference]: With dead ends: 2230 [2024-11-18 14:21:53,063 INFO L226 Difference]: Without dead ends: 1562 [2024-11-18 14:21:53,067 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 408 GetRequests, 364 SyntacticMatches, 8 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 334 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=404, Invalid=1002, Unknown=0, NotChecked=0, Total=1406 [2024-11-18 14:21:53,067 INFO L432 NwaCegarLoop]: 155 mSDtfsCounter, 439 mSDsluCounter, 700 mSDsCounter, 0 mSdLazyCounter, 868 mSolverCounterSat, 142 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 442 SdHoareTripleChecker+Valid, 855 SdHoareTripleChecker+Invalid, 1010 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 142 IncrementalHoareTripleChecker+Valid, 868 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:53,068 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [442 Valid, 855 Invalid, 1010 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [142 Valid, 868 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-18 14:21:53,069 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1562 states. [2024-11-18 14:21:53,172 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1562 to 1426. [2024-11-18 14:21:53,174 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1426 states, 1087 states have (on average 1.1398344066237351) internal successors, (1239), 1133 states have internal predecessors, (1239), 177 states have call successors, (177), 167 states have call predecessors, (177), 161 states have return successors, (202), 160 states have call predecessors, (202), 177 states have call successors, (202) [2024-11-18 14:21:53,180 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1426 states to 1426 states and 1618 transitions. [2024-11-18 14:21:53,182 INFO L78 Accepts]: Start accepts. Automaton has 1426 states and 1618 transitions. Word has length 185 [2024-11-18 14:21:53,183 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:53,183 INFO L471 AbstractCegarLoop]: Abstraction has 1426 states and 1618 transitions. [2024-11-18 14:21:53,183 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 22 states have (on average 10.590909090909092) internal successors, (233), 21 states have internal predecessors, (233), 14 states have call successors, (38), 8 states have call predecessors, (38), 14 states have return successors, (37), 14 states have call predecessors, (37), 14 states have call successors, (37) [2024-11-18 14:21:53,184 INFO L276 IsEmpty]: Start isEmpty. Operand 1426 states and 1618 transitions. [2024-11-18 14:21:53,202 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 236 [2024-11-18 14:21:53,203 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:53,203 INFO L215 NwaCegarLoop]: trace histogram [9, 9, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:53,222 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-18 14:21:53,407 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:53,408 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:53,408 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:53,409 INFO L85 PathProgramCache]: Analyzing trace with hash 20775479, now seen corresponding path program 1 times [2024-11-18 14:21:53,409 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:53,409 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1157534292] [2024-11-18 14:21:53,409 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:53,409 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:53,442 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:54,286 INFO L134 CoverageAnalysis]: Checked inductivity of 410 backedges. 110 proven. 116 refuted. 0 times theorem prover too weak. 184 trivial. 0 not checked. [2024-11-18 14:21:54,286 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:54,286 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1157534292] [2024-11-18 14:21:54,287 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1157534292] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:54,287 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1430680043] [2024-11-18 14:21:54,287 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:54,287 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:54,287 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:54,289 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:54,294 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-18 14:21:54,427 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:54,430 INFO L255 TraceCheckSpWp]: Trace formula consists of 660 conjuncts, 30 conjuncts are in the unsatisfiable core [2024-11-18 14:21:54,434 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:54,745 INFO L134 CoverageAnalysis]: Checked inductivity of 410 backedges. 139 proven. 89 refuted. 0 times theorem prover too weak. 182 trivial. 0 not checked. [2024-11-18 14:21:54,746 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:55,646 INFO L134 CoverageAnalysis]: Checked inductivity of 410 backedges. 92 proven. 136 refuted. 0 times theorem prover too weak. 182 trivial. 0 not checked. [2024-11-18 14:21:55,647 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1430680043] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:55,647 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:55,647 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 11, 16] total 30 [2024-11-18 14:21:55,647 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1379307] [2024-11-18 14:21:55,647 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:55,648 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2024-11-18 14:21:55,648 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:55,651 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2024-11-18 14:21:55,652 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=175, Invalid=695, Unknown=0, NotChecked=0, Total=870 [2024-11-18 14:21:55,652 INFO L87 Difference]: Start difference. First operand 1426 states and 1618 transitions. Second operand has 30 states, 30 states have (on average 9.9) internal successors, (297), 29 states have internal predecessors, (297), 17 states have call successors, (50), 10 states have call predecessors, (50), 20 states have return successors, (53), 17 states have call predecessors, (53), 17 states have call successors, (53) [2024-11-18 14:21:56,728 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:56,728 INFO L93 Difference]: Finished difference Result 2283 states and 2609 transitions. [2024-11-18 14:21:56,729 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-18 14:21:56,730 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 30 states have (on average 9.9) internal successors, (297), 29 states have internal predecessors, (297), 17 states have call successors, (50), 10 states have call predecessors, (50), 20 states have return successors, (53), 17 states have call predecessors, (53), 17 states have call successors, (53) Word has length 235 [2024-11-18 14:21:56,730 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:56,732 INFO L225 Difference]: With dead ends: 2283 [2024-11-18 14:21:56,733 INFO L226 Difference]: Without dead ends: 0 [2024-11-18 14:21:56,737 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 516 GetRequests, 462 SyntacticMatches, 9 SemanticMatches, 45 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 533 ImplicationChecksByTransitivity, 0.6s TimeCoverageRelationStatistics Valid=471, Invalid=1691, Unknown=0, NotChecked=0, Total=2162 [2024-11-18 14:21:56,738 INFO L432 NwaCegarLoop]: 145 mSDtfsCounter, 481 mSDsluCounter, 1487 mSDsCounter, 0 mSdLazyCounter, 1587 mSolverCounterSat, 178 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 483 SdHoareTripleChecker+Valid, 1632 SdHoareTripleChecker+Invalid, 1765 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 178 IncrementalHoareTripleChecker+Valid, 1587 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:56,738 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [483 Valid, 1632 Invalid, 1765 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [178 Valid, 1587 Invalid, 0 Unknown, 0 Unchecked, 0.8s Time] [2024-11-18 14:21:56,739 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-18 14:21:56,739 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-18 14:21:56,739 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-18 14:21:56,739 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-18 14:21:56,740 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 235 [2024-11-18 14:21:56,741 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:56,741 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-18 14:21:56,741 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 30 states have (on average 9.9) internal successors, (297), 29 states have internal predecessors, (297), 17 states have call successors, (50), 10 states have call predecessors, (50), 20 states have return successors, (53), 17 states have call predecessors, (53), 17 states have call successors, (53) [2024-11-18 14:21:56,741 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-18 14:21:56,741 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-18 14:21:56,745 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-18 14:21:56,763 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-18 14:21:56,949 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2024-11-18 14:21:56,952 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:56,953 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-18 14:22:06,574 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-18 14:22:06,618 WARN L156 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse8 (= ~methaneLevelCritical~0 0))) (and (let ((.cse2 (<= ~waterLevel~0 2)) (.cse6 (= ~waterLevel~0 1)) (.cse4 (= ~pumpRunning~0 1)) (.cse3 (= ~waterLevel~0 0)) (.cse5 (= ~pumpRunning~0 0)) (.cse7 (= 2 ~waterLevel~0)) (.cse1 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse5 .cse1 .cse6) (and .cse7 .cse1 .cse4) (and .cse0 .cse1 .cse2 .cse6 .cse4) (and .cse5 .cse1 .cse3) (and .cse5 .cse7 .cse1))) (or .cse0 (not .cse8)) (or (not .cse0) .cse8))) Eliminated clause: (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse0 (= |old(~methaneLevelCritical~0)| 0))) (and (or .cse0 (not .cse1)) (or (not .cse0) .cse1) (let ((.cse7 (= ~waterLevel~0 0)) (.cse2 (= ~pumpRunning~0 0)) (.cse5 (= 2 ~waterLevel~0)) (.cse3 (= 1 ~systemActive~0)) (.cse4 (= ~waterLevel~0 1)) (.cse6 (= ~pumpRunning~0 1))) (or (and .cse2 .cse3 .cse4) (and .cse5 .cse3 .cse6) (and .cse0 .cse3 .cse7 .cse6) (and .cse2 .cse3 .cse7) (and .cse2 .cse5 .cse3) (and .cse0 .cse3 .cse4 .cse6)))))) [2024-11-18 14:22:06,629 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:06,649 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse18 (= |old(~waterLevel~0)| 0)) (.cse17 (= |old(~pumpRunning~0)| 0)) (.cse14 (= |old(~pumpRunning~0)| 1)) (.cse16 (= |old(~waterLevel~0)| 1)) (.cse15 (= |old(~waterLevel~0)| 2)) (.cse9 (= ~methaneLevelCritical~0 0))) (let ((.cse1 (= ~pumpRunning~0 0)) (.cse4 (not .cse9)) (.cse3 (not .cse15)) (.cse2 (= 2 ~waterLevel~0)) (.cse12 (= ~waterLevel~0 0)) (.cse11 (= ~waterLevel~0 1)) (.cse19 (= ~pumpRunning~0 1)) (.cse8 (not .cse16)) (.cse5 (not .cse14)) (.cse0 (not .cse17)) (.cse10 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse6 (not .cse18)) (.cse7 (<= 1 ~switchedOnBeforeTS~0))) (and (or .cse0 (and .cse1 .cse2) .cse3) (or .cse4 .cse5 .cse6 .cse7) (or .cse8 .cse9 .cse10 .cse7) (or .cse0 .cse8 (and .cse1 .cse11)) (or .cse0 (and .cse1 .cse12) .cse6) (let ((.cse13 (= 1 ~systemActive~0))) (or (and .cse13 .cse14 .cse15) (and .cse16 .cse13 .cse17) (and .cse13 .cse14 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse18) (and .cse16 .cse13 .cse14) (and .cse13 .cse17 .cse18) (and .cse13 .cse17 .cse15) (and .cse13 .cse4 .cse14 .cse18))) (or .cse5 .cse3 (and .cse2 .cse19)) (or .cse8 .cse10 .cse5 .cse7) (or .cse5 .cse6 (and .cse12 .cse19)) (or (and .cse11 .cse19) .cse8 .cse5) (or .cse0 .cse9 .cse10 .cse6 .cse7)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse13 (= |old(~pumpRunning~0)| 1)) (.cse15 (= |old(~waterLevel~0)| 1)) (.cse17 (= |old(~waterLevel~0)| 0)) (.cse4 (= ~methaneLevelCritical~0 0)) (.cse14 (= |old(~waterLevel~0)| 2)) (.cse16 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not .cse16)) (.cse1 (= ~pumpRunning~0 0)) (.cse3 (not .cse14)) (.cse2 (= 2 ~waterLevel~0)) (.cse5 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse11 (= ~waterLevel~0 0)) (.cse6 (< 0 ~switchedOnBeforeTS~0)) (.cse18 (not .cse4)) (.cse7 (not .cse17)) (.cse9 (= ~waterLevel~0 1)) (.cse19 (= ~pumpRunning~0 1)) (.cse8 (not .cse15)) (.cse10 (not .cse13))) (and (or .cse0 (and .cse1 .cse2) .cse3) (or .cse0 .cse4 .cse5 .cse6 .cse7) (or .cse0 .cse8 (and .cse1 .cse9)) (or .cse8 .cse5 .cse6 .cse10) (or .cse0 (and .cse1 .cse11) .cse7) (let ((.cse12 (= 1 ~systemActive~0))) (or (and .cse12 .cse13 .cse14) (and .cse15 .cse12 .cse16) (and .cse12 .cse13 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse17) (and .cse15 .cse12 .cse13) (and .cse12 .cse16 .cse17) (and .cse12 .cse16 .cse14) (and .cse12 .cse18 .cse13 .cse17))) (or .cse10 .cse3 (and .cse2 .cse19)) (or .cse8 .cse4 .cse5 .cse6) (or .cse10 .cse7 (and .cse11 .cse19)) (or .cse6 .cse18 .cse10 .cse7) (or (and .cse9 .cse19) .cse8 .cse10))))) [2024-11-18 14:22:06,671 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:06,682 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse1 (= ~pumpRunning~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse0 (= |old(~pumpRunning~0)| 0))) (let ((.cse4 (= |old(~pumpRunning~0)| 1)) (.cse3 (and .cse1 .cse2 .cse0)) (.cse6 (= 2 ~waterLevel~0))) (and (or (not .cse0) (and .cse1 .cse2)) (or .cse3 (= ~methaneLevelCritical~0 0)) (or (not .cse4) (= ~pumpRunning~0 1)) (let ((.cse7 (= ~waterLevel~0 1)) (.cse8 (<= 1 ~switchedOnBeforeTS~0)) (.cse5 (= ~waterLevel~0 0))) (or (and .cse0 .cse5) .cse6 (and .cse2 .cse4 .cse7 .cse8) (and .cse0 .cse7) (and .cse2 .cse4 .cse8 .cse5))) (or .cse3 (not .cse6))))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse1 (= ~pumpRunning~0 0)) (.cse2 (= 1 ~systemActive~0)) (.cse0 (= |old(~pumpRunning~0)| 0))) (let ((.cse4 (= |old(~pumpRunning~0)| 1)) (.cse3 (and .cse1 .cse2 .cse0)) (.cse6 (= 2 ~waterLevel~0))) (and (or (not .cse0) (and .cse1 .cse2)) (or .cse3 (= ~methaneLevelCritical~0 0)) (or (not .cse4) (= ~pumpRunning~0 1)) (let ((.cse7 (= ~waterLevel~0 1)) (.cse8 (<= 1 ~switchedOnBeforeTS~0)) (.cse5 (= ~waterLevel~0 0))) (or (and .cse0 .cse5) .cse6 (and .cse2 .cse4 .cse7 .cse8) (and .cse0 .cse7) (and .cse2 .cse4 .cse8 .cse5))) (or .cse3 (not .cse6)))))) [2024-11-18 14:22:06,692 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:06,701 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse1 (= |old(~waterLevel~0)| 1)) (.cse2 (= |old(~waterLevel~0)| 2)) (.cse0 (= |old(~waterLevel~0)| 0))) (and (or (not .cse0) (= ~waterLevel~0 0)) (or (not .cse1) (= ~waterLevel~0 1)) (or (= 2 ~waterLevel~0) (not .cse2)) (let ((.cse5 (= ~methaneLevelCritical~0 0)) (.cse6 (<= 1 ~switchedOnBeforeTS~0)) (.cse7 (= ~pumpRunning~0 1)) (.cse3 (= ~pumpRunning~0 0)) (.cse4 (= 1 ~systemActive~0))) (or (and .cse3 .cse4 .cse2) (and .cse3 .cse1 .cse4) (and .cse1 .cse5 .cse4 .cse6 .cse7) (and .cse4 .cse2 .cse7) (and .cse5 .cse4 .cse6 .cse0 .cse7) (and .cse3 .cse4 .cse0))))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse1 (= |old(~waterLevel~0)| 1)) (.cse2 (= |old(~waterLevel~0)| 2)) (.cse0 (= |old(~waterLevel~0)| 0))) (and (or (not .cse0) (= ~waterLevel~0 0)) (or (not .cse1) (= ~waterLevel~0 1)) (or (= 2 ~waterLevel~0) (not .cse2)) (let ((.cse5 (= ~methaneLevelCritical~0 0)) (.cse6 (<= 1 ~switchedOnBeforeTS~0)) (.cse7 (= ~pumpRunning~0 1)) (.cse3 (= ~pumpRunning~0 0)) (.cse4 (= 1 ~systemActive~0))) (or (and .cse3 .cse4 .cse2) (and .cse3 .cse1 .cse4) (and .cse1 .cse5 .cse4 .cse6 .cse7) (and .cse4 .cse2 .cse7) (and .cse5 .cse4 .cse6 .cse0 .cse7) (and .cse3 .cse4 .cse0)))))) [2024-11-18 14:22:06,707 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:06,722 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 18.11 02:22:06 BoogieIcfgContainer [2024-11-18 14:22:06,725 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-18 14:22:06,726 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-18 14:22:06,726 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-18 14:22:06,726 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-18 14:22:06,726 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:41" (3/4) ... [2024-11-18 14:22:06,729 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-18 14:22:06,734 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-18 14:22:06,745 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 21 nodes and edges [2024-11-18 14:22:06,745 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-18 14:22:06,746 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-18 14:22:06,746 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:22:06,746 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:22:06,868 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-18 14:22:06,869 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-18 14:22:06,869 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-18 14:22:06,869 INFO L158 Benchmark]: Toolchain (without parser) took 26403.16ms. Allocated memory was 174.1MB in the beginning and 419.4MB in the end (delta: 245.4MB). Free memory was 114.7MB in the beginning and 167.7MB in the end (delta: -53.0MB). Peak memory consumption was 192.4MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,870 INFO L158 Benchmark]: CDTParser took 0.18ms. Allocated memory is still 100.7MB. Free memory is still 56.4MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-18 14:22:06,870 INFO L158 Benchmark]: CACSL2BoogieTranslator took 521.81ms. Allocated memory is still 174.1MB. Free memory was 114.2MB in the beginning and 133.7MB in the end (delta: -19.5MB). Peak memory consumption was 14.7MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,871 INFO L158 Benchmark]: Boogie Procedure Inliner took 51.43ms. Allocated memory is still 174.1MB. Free memory was 133.7MB in the beginning and 131.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,871 INFO L158 Benchmark]: Boogie Preprocessor took 46.29ms. Allocated memory is still 174.1MB. Free memory was 131.6MB in the beginning and 129.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,872 INFO L158 Benchmark]: RCFGBuilder took 459.08ms. Allocated memory is still 174.1MB. Free memory was 128.8MB in the beginning and 110.6MB in the end (delta: 18.2MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,872 INFO L158 Benchmark]: TraceAbstraction took 25175.01ms. Allocated memory was 174.1MB in the beginning and 419.4MB in the end (delta: 245.4MB). Free memory was 109.9MB in the beginning and 176.1MB in the end (delta: -66.2MB). Peak memory consumption was 230.2MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,873 INFO L158 Benchmark]: Witness Printer took 143.07ms. Allocated memory is still 419.4MB. Free memory was 176.1MB in the beginning and 167.7MB in the end (delta: 8.4MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2024-11-18 14:22:06,875 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.18ms. Allocated memory is still 100.7MB. Free memory is still 56.4MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 521.81ms. Allocated memory is still 174.1MB. Free memory was 114.2MB in the beginning and 133.7MB in the end (delta: -19.5MB). Peak memory consumption was 14.7MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 51.43ms. Allocated memory is still 174.1MB. Free memory was 133.7MB in the beginning and 131.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 46.29ms. Allocated memory is still 174.1MB. Free memory was 131.6MB in the beginning and 129.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 459.08ms. Allocated memory is still 174.1MB. Free memory was 128.8MB in the beginning and 110.6MB in the end (delta: 18.2MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * TraceAbstraction took 25175.01ms. Allocated memory was 174.1MB in the beginning and 419.4MB in the end (delta: 245.4MB). Free memory was 109.9MB in the beginning and 176.1MB in the end (delta: -66.2MB). Peak memory consumption was 230.2MB. Max. memory is 16.1GB. * Witness Printer took 143.07ms. Allocated memory is still 419.4MB. Free memory was 176.1MB in the beginning and 167.7MB in the end (delta: 8.4MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 150]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [150] - GenericResultAtLocation [Line: 201]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [201] - GenericResultAtLocation [Line: 304]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [304] - GenericResultAtLocation [Line: 313]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [313] - GenericResultAtLocation [Line: 496]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [496] - GenericResultAtLocation [Line: 561]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [561] - GenericResultAtLocation [Line: 596]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [596] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 309]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 8 procedures, 90 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 15.3s, OverallIterations: 14, TraceHistogramMax: 9, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 5.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3405 SdHoareTripleChecker+Valid, 3.4s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3380 mSDsluCounter, 7204 SdHoareTripleChecker+Invalid, 2.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 5576 mSDsCounter, 1039 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 4880 IncrementalHoareTripleChecker+Invalid, 5919 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1039 mSolverCounterUnsat, 1628 mSDtfsCounter, 4880 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1992 GetRequests, 1733 SyntacticMatches, 25 SemanticMatches, 234 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1940 ImplicationChecksByTransitivity, 2.6s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1426occurred in iteration=13, InterpolantAutomatonStates: 162, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.6s AutomataMinimizationTime, 14 MinimizatonAttempts, 466 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.2s SsaConstructionTime, 0.5s SatisfiabilityAnalysisTime, 6.7s InterpolantComputationTime, 2138 NumberOfCodeBlocks, 2138 NumberOfCodeBlocksAsserted, 19 NumberOfCheckSat, 2980 ConstructedInterpolants, 0 QuantifiedInterpolants, 7443 SizeOfPredicates, 5 NumberOfNonLiveVariables, 2544 ConjunctsInSsa, 79 ConjunctsInUnsatCore, 24 InterpolantComputations, 9 PerfectInterpolantSequences, 2620/3303 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 214]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 506]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 507]: Loop Invariant Derived loop invariant: (((((((((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 0)) || ((((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)) && (pumpRunning == 1))) || ((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) - ProcedureContractResult [Line: 346]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((((methaneLevelCritical == 0) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)) && (pumpRunning == 1))) || (((((methaneLevelCritical == 0) && (1 == systemActive)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 0))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: ((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((((methaneLevelCritical == 0) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)) && (pumpRunning == 1))) || (((((methaneLevelCritical == 0) && (1 == systemActive)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 0))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 83]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Ensures: (((((methaneLevelCritical == 0) || (\old(methaneLevelCritical) == 0)) && ((\old(methaneLevelCritical) != 0) || (methaneLevelCritical != 0))) && ((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || ((((\old(methaneLevelCritical) == 0) && (1 == systemActive)) && (waterLevel == 0)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 0))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((((\old(methaneLevelCritical) == 0) && (1 == systemActive)) && (waterLevel == 1)) && (pumpRunning == 1)))) && ((((((waterLevel == \old(waterLevel)) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 319]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((((((((((methaneLevelCritical == 0) || (\old(pumpRunning) != 1)) || (\old(waterLevel) != 0)) || (((pumpRunning == 0) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0))) && (((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || ((pumpRunning == 0) && (waterLevel == 1)))) && (((((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (\old(waterLevel) == 2)) || (((\old(waterLevel) == 1) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (1 <= \old(switchedOnBeforeTS))) && (\old(waterLevel) == 0))) || (((\old(waterLevel) == 1) && (1 == systemActive)) && (\old(pumpRunning) == 1))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == 0))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == 2))) || ((((1 == systemActive) && (methaneLevelCritical != 0)) && (\old(pumpRunning) == 1)) && (\old(waterLevel) == 0)))) && ((((1 < \old(waterLevel)) || (\old(pumpRunning) != 0)) || ((pumpRunning == 0) && (waterLevel == 0))) || (\old(waterLevel) == 1))) && ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (2 == waterLevel))) || (\old(waterLevel) != 2)) || ((2 == waterLevel) && (pumpRunning == 1)))) && ((((methaneLevelCritical != 0) || (\old(pumpRunning) != 1)) || (((waterLevel == 1) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (\old(waterLevel) != 2))) && ((((((1 <= switchedOnBeforeTS) && (waterLevel == 0)) && (pumpRunning == 1)) || (methaneLevelCritical != 0)) || (\old(pumpRunning) != 1)) || (\old(waterLevel) != 0))) && ((((\old(waterLevel) != 1) || (((1 <= switchedOnBeforeTS) && (waterLevel == 0)) && (pumpRunning == 1))) || (methaneLevelCritical != 0)) || (\old(pumpRunning) != 1))) && ((((methaneLevelCritical == 0) || (\old(pumpRunning) != 1)) || (\old(waterLevel) != 2)) || (((pumpRunning == 0) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)))) && ((((\old(waterLevel) != 1) || (methaneLevelCritical == 0)) || (\old(pumpRunning) != 1)) || (((pumpRunning == 0) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)))) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 204]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 354]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: (((((((((((pumpRunning == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0)) || (2 != waterLevel)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (pumpRunning == 1))) && (((\old(pumpRunning) != 0) || (waterLevel != 0)) || ((pumpRunning == 0) && (1 == systemActive)))) && (((waterLevel != 1) || (\old(pumpRunning) != 0)) || ((pumpRunning == 0) && (1 == systemActive)))) && ((\old(pumpRunning) != 1) || (pumpRunning == 1))) && ((((((\old(pumpRunning) == 0) && (waterLevel == 0)) || (2 == waterLevel)) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS))) || ((\old(pumpRunning) == 0) && (waterLevel == 1))) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)))) && (((((pumpRunning == 0) && (1 == systemActive)) && (\old(pumpRunning) == 0)) || (methaneLevelCritical == 0)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (pumpRunning == 1)))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 71]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: ((((((2 == waterLevel) || (\old(waterLevel) != 2)) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && ((((((((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) || (((pumpRunning == 0) && (\old(waterLevel) == 1)) && (1 == systemActive))) || (((((\old(waterLevel) == 1) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((1 == systemActive) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || (((((methaneLevelCritical == 0) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (\old(waterLevel) == 0)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 0)))) && ((\old(waterLevel) != 0) || (waterLevel == 1))) && ((((((methaneLevelCritical == \old(methaneLevelCritical)) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) - ProcedureContractResult [Line: 432]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: (((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || ((((1 == systemActive) && (methaneLevelCritical != 0)) && (waterLevel == 0)) && (pumpRunning == 1))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((1 == systemActive) && (waterLevel == 1)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 0))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)) && (pumpRunning == 1))) Ensures: ((((((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || ((((1 == systemActive) && (methaneLevelCritical != 0)) && (waterLevel == 0)) && (pumpRunning == 1))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((1 == systemActive) && (waterLevel == 1)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 0))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (waterLevel == 0)) && (pumpRunning == 1))) && ((pumpRunning != 0) || (\result == 0))) && ((\result == 1) || (pumpRunning != 1))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (head == \old(head)))) RESULT: Ultimate proved your program to be correct! [2024-11-18 14:22:06,913 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE