./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec5_product40.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 3061b6dc Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec5_product40.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 31801b0d0a8db366707af3e7371b9dc02f7c34625c63f4c3f856015d4449b4b2 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-3061b6d-m [2024-11-18 14:21:42,342 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-18 14:21:42,400 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-18 14:21:42,409 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-18 14:21:42,409 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-18 14:21:42,436 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-18 14:21:42,437 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-18 14:21:42,437 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-18 14:21:42,438 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-18 14:21:42,438 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-18 14:21:42,439 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-18 14:21:42,439 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-18 14:21:42,439 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-18 14:21:42,440 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-18 14:21:42,441 INFO L153 SettingsManager]: * Use SBE=true [2024-11-18 14:21:42,441 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-18 14:21:42,442 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-18 14:21:42,442 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-18 14:21:42,442 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-18 14:21:42,443 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-18 14:21:42,443 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-18 14:21:42,445 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-18 14:21:42,445 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-18 14:21:42,446 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-18 14:21:42,446 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-18 14:21:42,446 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-18 14:21:42,447 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-18 14:21:42,447 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-18 14:21:42,448 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-18 14:21:42,448 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-18 14:21:42,448 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-18 14:21:42,449 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-18 14:21:42,449 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:21:42,449 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-18 14:21:42,450 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-18 14:21:42,450 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-18 14:21:42,450 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-18 14:21:42,451 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-18 14:21:42,452 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-18 14:21:42,452 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-18 14:21:42,452 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-18 14:21:42,467 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-18 14:21:42,467 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 31801b0d0a8db366707af3e7371b9dc02f7c34625c63f4c3f856015d4449b4b2 [2024-11-18 14:21:42,783 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-18 14:21:42,809 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-18 14:21:42,812 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-18 14:21:42,814 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-18 14:21:42,814 INFO L274 PluginConnector]: CDTParser initialized [2024-11-18 14:21:42,815 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec5_product40.cil.c [2024-11-18 14:21:44,258 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-18 14:21:44,485 INFO L384 CDTParser]: Found 1 translation units. [2024-11-18 14:21:44,486 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product40.cil.c [2024-11-18 14:21:44,498 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/6ff3747b9/712ed2c1300d48929d87aa9a7c1654c4/FLAG063d22eef [2024-11-18 14:21:44,830 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/6ff3747b9/712ed2c1300d48929d87aa9a7c1654c4 [2024-11-18 14:21:44,832 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-18 14:21:44,833 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-18 14:21:44,836 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-18 14:21:44,836 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-18 14:21:44,843 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-18 14:21:44,843 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:21:44" (1/1) ... [2024-11-18 14:21:44,844 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@5f513c84 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:44, skipping insertion in model container [2024-11-18 14:21:44,844 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:21:44" (1/1) ... [2024-11-18 14:21:44,889 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-18 14:21:45,247 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product40.cil.c[17098,17111] [2024-11-18 14:21:45,261 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:21:45,273 INFO L200 MainTranslator]: Completed pre-run [2024-11-18 14:21:45,283 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] [2024-11-18 14:21:45,284 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [266] [2024-11-18 14:21:45,285 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [338] [2024-11-18 14:21:45,285 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [704] [2024-11-18 14:21:45,285 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [755] [2024-11-18 14:21:45,285 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [855] [2024-11-18 14:21:45,285 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [864] [2024-11-18 14:21:45,286 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [899] [2024-11-18 14:21:45,344 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product40.cil.c[17098,17111] [2024-11-18 14:21:45,349 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:21:45,376 INFO L204 MainTranslator]: Completed translation [2024-11-18 14:21:45,376 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45 WrapperNode [2024-11-18 14:21:45,377 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-18 14:21:45,378 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-18 14:21:45,378 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-18 14:21:45,378 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-18 14:21:45,384 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,399 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,428 INFO L138 Inliner]: procedures = 57, calls = 103, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 209 [2024-11-18 14:21:45,428 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-18 14:21:45,429 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-18 14:21:45,429 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-18 14:21:45,429 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-18 14:21:45,443 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,443 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,445 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,459 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-18 14:21:45,459 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,459 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,466 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,473 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,474 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,478 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,480 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-18 14:21:45,481 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-18 14:21:45,481 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-18 14:21:45,482 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-18 14:21:45,482 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (1/1) ... [2024-11-18 14:21:45,488 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:21:45,498 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:45,514 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-18 14:21:45,519 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-18 14:21:45,579 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-18 14:21:45,580 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-18 14:21:45,580 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-18 14:21:45,581 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-18 14:21:45,581 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-18 14:21:45,582 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-18 14:21:45,585 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-18 14:21:45,585 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:21:45,585 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:21:45,585 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-18 14:21:45,585 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-18 14:21:45,586 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-18 14:21:45,586 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-18 14:21:45,586 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-18 14:21:45,586 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-18 14:21:45,586 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-18 14:21:45,586 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-18 14:21:45,586 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-18 14:21:45,586 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-18 14:21:45,586 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-18 14:21:45,674 INFO L238 CfgBuilder]: Building ICFG [2024-11-18 14:21:45,677 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-18 14:21:45,969 INFO L? ?]: Removed 42 outVars from TransFormulas that were not future-live. [2024-11-18 14:21:45,969 INFO L287 CfgBuilder]: Performing block encoding [2024-11-18 14:21:45,993 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-18 14:21:45,993 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-18 14:21:45,994 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:45 BoogieIcfgContainer [2024-11-18 14:21:45,994 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-18 14:21:45,996 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-18 14:21:45,996 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-18 14:21:45,999 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-18 14:21:46,000 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 18.11 02:21:44" (1/3) ... [2024-11-18 14:21:46,000 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5a4ca9e1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:21:46, skipping insertion in model container [2024-11-18 14:21:46,000 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:45" (2/3) ... [2024-11-18 14:21:46,001 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@5a4ca9e1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:21:46, skipping insertion in model container [2024-11-18 14:21:46,001 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:45" (3/3) ... [2024-11-18 14:21:46,002 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product40.cil.c [2024-11-18 14:21:46,020 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-18 14:21:46,020 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-18 14:21:46,073 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-18 14:21:46,079 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@6bdba454, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-18 14:21:46,079 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-18 14:21:46,084 INFO L276 IsEmpty]: Start isEmpty. Operand has 98 states, 74 states have (on average 1.364864864864865) internal successors, (101), 83 states have internal predecessors, (101), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-18 14:21:46,092 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-18 14:21:46,092 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:46,092 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:46,093 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:46,097 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:46,098 INFO L85 PathProgramCache]: Analyzing trace with hash 694872208, now seen corresponding path program 1 times [2024-11-18 14:21:46,106 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:46,106 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [21961112] [2024-11-18 14:21:46,107 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:46,107 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:46,240 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:46,331 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:46,332 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:46,332 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [21961112] [2024-11-18 14:21:46,332 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [21961112] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:46,333 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:46,333 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-18 14:21:46,334 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1015513594] [2024-11-18 14:21:46,335 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:46,338 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-18 14:21:46,338 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:46,356 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-18 14:21:46,356 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:21:46,358 INFO L87 Difference]: Start difference. First operand has 98 states, 74 states have (on average 1.364864864864865) internal successors, (101), 83 states have internal predecessors, (101), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:46,386 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:46,386 INFO L93 Difference]: Finished difference Result 187 states and 252 transitions. [2024-11-18 14:21:46,389 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-18 14:21:46,390 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 32 [2024-11-18 14:21:46,390 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:46,399 INFO L225 Difference]: With dead ends: 187 [2024-11-18 14:21:46,399 INFO L226 Difference]: Without dead ends: 89 [2024-11-18 14:21:46,403 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:21:46,406 INFO L432 NwaCegarLoop]: 123 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 123 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:46,407 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 123 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:46,420 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 89 states. [2024-11-18 14:21:46,438 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 89 to 89. [2024-11-18 14:21:46,440 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 89 states, 67 states have (on average 1.2985074626865671) internal successors, (87), 75 states have internal predecessors, (87), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-18 14:21:46,442 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 89 states to 89 states and 114 transitions. [2024-11-18 14:21:46,444 INFO L78 Accepts]: Start accepts. Automaton has 89 states and 114 transitions. Word has length 32 [2024-11-18 14:21:46,445 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:46,445 INFO L471 AbstractCegarLoop]: Abstraction has 89 states and 114 transitions. [2024-11-18 14:21:46,445 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:46,445 INFO L276 IsEmpty]: Start isEmpty. Operand 89 states and 114 transitions. [2024-11-18 14:21:46,448 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2024-11-18 14:21:46,448 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:46,448 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:46,449 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-18 14:21:46,449 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:46,450 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:46,450 INFO L85 PathProgramCache]: Analyzing trace with hash -778098819, now seen corresponding path program 1 times [2024-11-18 14:21:46,450 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:46,450 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [294723697] [2024-11-18 14:21:46,451 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:46,451 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:46,482 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:46,585 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:46,585 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:46,586 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [294723697] [2024-11-18 14:21:46,586 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [294723697] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:46,586 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:46,586 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:46,587 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1259253379] [2024-11-18 14:21:46,587 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:46,589 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:46,589 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:46,590 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:46,590 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:46,590 INFO L87 Difference]: Start difference. First operand 89 states and 114 transitions. Second operand has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:46,612 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:46,612 INFO L93 Difference]: Finished difference Result 138 states and 176 transitions. [2024-11-18 14:21:46,613 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:46,613 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 33 [2024-11-18 14:21:46,613 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:46,615 INFO L225 Difference]: With dead ends: 138 [2024-11-18 14:21:46,615 INFO L226 Difference]: Without dead ends: 80 [2024-11-18 14:21:46,616 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:46,618 INFO L432 NwaCegarLoop]: 101 mSDtfsCounter, 17 mSDsluCounter, 79 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 180 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:46,618 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 180 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:46,619 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 80 states. [2024-11-18 14:21:46,629 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 80 to 80. [2024-11-18 14:21:46,629 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 80 states, 61 states have (on average 1.3114754098360655) internal successors, (80), 69 states have internal predecessors, (80), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-18 14:21:46,630 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 80 states to 80 states and 102 transitions. [2024-11-18 14:21:46,631 INFO L78 Accepts]: Start accepts. Automaton has 80 states and 102 transitions. Word has length 33 [2024-11-18 14:21:46,631 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:46,631 INFO L471 AbstractCegarLoop]: Abstraction has 80 states and 102 transitions. [2024-11-18 14:21:46,631 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:46,631 INFO L276 IsEmpty]: Start isEmpty. Operand 80 states and 102 transitions. [2024-11-18 14:21:46,633 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 39 [2024-11-18 14:21:46,633 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:46,633 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:46,634 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-18 14:21:46,634 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:46,635 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:46,635 INFO L85 PathProgramCache]: Analyzing trace with hash 1811500472, now seen corresponding path program 1 times [2024-11-18 14:21:46,637 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:46,637 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [130977716] [2024-11-18 14:21:46,638 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:46,638 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:46,676 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:46,825 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:46,825 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:46,826 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [130977716] [2024-11-18 14:21:46,826 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [130977716] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:46,826 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:46,826 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:21:46,826 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [73605966] [2024-11-18 14:21:46,826 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:46,827 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:21:46,827 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:46,828 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:21:46,828 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:46,828 INFO L87 Difference]: Start difference. First operand 80 states and 102 transitions. Second operand has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:46,914 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:46,914 INFO L93 Difference]: Finished difference Result 199 states and 258 transitions. [2024-11-18 14:21:46,914 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:21:46,915 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 38 [2024-11-18 14:21:46,915 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:46,916 INFO L225 Difference]: With dead ends: 199 [2024-11-18 14:21:46,916 INFO L226 Difference]: Without dead ends: 127 [2024-11-18 14:21:46,917 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-18 14:21:46,918 INFO L432 NwaCegarLoop]: 114 mSDtfsCounter, 91 mSDsluCounter, 283 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 91 SdHoareTripleChecker+Valid, 397 SdHoareTripleChecker+Invalid, 13 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:46,919 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [91 Valid, 397 Invalid, 13 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:46,919 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 127 states. [2024-11-18 14:21:46,944 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 127 to 124. [2024-11-18 14:21:46,944 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 124 states, 94 states have (on average 1.3297872340425532) internal successors, (125), 105 states have internal predecessors, (125), 17 states have call successors, (17), 12 states have call predecessors, (17), 12 states have return successors, (18), 13 states have call predecessors, (18), 17 states have call successors, (18) [2024-11-18 14:21:46,946 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 124 states to 124 states and 160 transitions. [2024-11-18 14:21:46,947 INFO L78 Accepts]: Start accepts. Automaton has 124 states and 160 transitions. Word has length 38 [2024-11-18 14:21:46,947 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:46,947 INFO L471 AbstractCegarLoop]: Abstraction has 124 states and 160 transitions. [2024-11-18 14:21:46,947 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:46,948 INFO L276 IsEmpty]: Start isEmpty. Operand 124 states and 160 transitions. [2024-11-18 14:21:46,949 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-18 14:21:46,949 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:46,950 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:46,950 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-18 14:21:46,950 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:46,951 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:46,951 INFO L85 PathProgramCache]: Analyzing trace with hash -1858694344, now seen corresponding path program 1 times [2024-11-18 14:21:46,951 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:46,951 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [120603736] [2024-11-18 14:21:46,951 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:46,951 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:46,974 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:47,094 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-18 14:21:47,094 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:47,095 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [120603736] [2024-11-18 14:21:47,095 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [120603736] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:47,095 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:47,095 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:21:47,095 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1306109246] [2024-11-18 14:21:47,095 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:47,096 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:21:47,096 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:47,096 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:21:47,097 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:21:47,097 INFO L87 Difference]: Start difference. First operand 124 states and 160 transitions. Second operand has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:47,283 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:47,283 INFO L93 Difference]: Finished difference Result 279 states and 370 transitions. [2024-11-18 14:21:47,284 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-18 14:21:47,284 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 41 [2024-11-18 14:21:47,285 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:47,286 INFO L225 Difference]: With dead ends: 279 [2024-11-18 14:21:47,287 INFO L226 Difference]: Without dead ends: 163 [2024-11-18 14:21:47,291 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-18 14:21:47,292 INFO L432 NwaCegarLoop]: 102 mSDtfsCounter, 72 mSDsluCounter, 334 mSDsCounter, 0 mSdLazyCounter, 68 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 74 SdHoareTripleChecker+Valid, 436 SdHoareTripleChecker+Invalid, 77 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 68 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:47,292 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [74 Valid, 436 Invalid, 77 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 68 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:21:47,297 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 163 states. [2024-11-18 14:21:47,325 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 163 to 162. [2024-11-18 14:21:47,326 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 162 states, 123 states have (on average 1.2682926829268293) internal successors, (156), 133 states have internal predecessors, (156), 21 states have call successors, (21), 17 states have call predecessors, (21), 17 states have return successors, (27), 20 states have call predecessors, (27), 21 states have call successors, (27) [2024-11-18 14:21:47,331 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 162 states to 162 states and 204 transitions. [2024-11-18 14:21:47,332 INFO L78 Accepts]: Start accepts. Automaton has 162 states and 204 transitions. Word has length 41 [2024-11-18 14:21:47,332 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:47,332 INFO L471 AbstractCegarLoop]: Abstraction has 162 states and 204 transitions. [2024-11-18 14:21:47,332 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:47,333 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 204 transitions. [2024-11-18 14:21:47,335 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-11-18 14:21:47,335 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:47,335 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:47,336 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-18 14:21:47,336 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:47,336 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:47,336 INFO L85 PathProgramCache]: Analyzing trace with hash 68722199, now seen corresponding path program 1 times [2024-11-18 14:21:47,337 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:47,337 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1396000137] [2024-11-18 14:21:47,337 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:47,339 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:47,364 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:47,489 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:47,490 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:47,490 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1396000137] [2024-11-18 14:21:47,490 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1396000137] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:47,490 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:47,490 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:21:47,490 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [950980657] [2024-11-18 14:21:47,491 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:47,491 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:21:47,491 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:47,492 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:21:47,492 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:21:47,492 INFO L87 Difference]: Start difference. First operand 162 states and 204 transitions. Second operand has 4 states, 4 states have (on average 10.75) internal successors, (43), 4 states have internal predecessors, (43), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:47,637 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:47,637 INFO L93 Difference]: Finished difference Result 605 states and 801 transitions. [2024-11-18 14:21:47,638 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:21:47,638 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 10.75) internal successors, (43), 4 states have internal predecessors, (43), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 52 [2024-11-18 14:21:47,638 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:47,642 INFO L225 Difference]: With dead ends: 605 [2024-11-18 14:21:47,644 INFO L226 Difference]: Without dead ends: 451 [2024-11-18 14:21:47,645 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:21:47,646 INFO L432 NwaCegarLoop]: 173 mSDtfsCounter, 145 mSDsluCounter, 148 mSDsCounter, 0 mSdLazyCounter, 67 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 145 SdHoareTripleChecker+Valid, 321 SdHoareTripleChecker+Invalid, 74 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 67 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:47,647 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [145 Valid, 321 Invalid, 74 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 67 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:21:47,652 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 451 states. [2024-11-18 14:21:47,703 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 451 to 440. [2024-11-18 14:21:47,706 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 440 states, 335 states have (on average 1.2597014925373133) internal successors, (422), 358 states have internal predecessors, (422), 57 states have call successors, (57), 46 states have call predecessors, (57), 47 states have return successors, (91), 56 states have call predecessors, (91), 57 states have call successors, (91) [2024-11-18 14:21:47,709 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 440 states to 440 states and 570 transitions. [2024-11-18 14:21:47,712 INFO L78 Accepts]: Start accepts. Automaton has 440 states and 570 transitions. Word has length 52 [2024-11-18 14:21:47,712 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:47,713 INFO L471 AbstractCegarLoop]: Abstraction has 440 states and 570 transitions. [2024-11-18 14:21:47,713 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 10.75) internal successors, (43), 4 states have internal predecessors, (43), 2 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:47,713 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 570 transitions. [2024-11-18 14:21:47,716 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2024-11-18 14:21:47,719 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:47,719 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:47,719 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-18 14:21:47,720 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:47,720 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:47,720 INFO L85 PathProgramCache]: Analyzing trace with hash -1296279403, now seen corresponding path program 1 times [2024-11-18 14:21:47,720 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:47,720 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [385458983] [2024-11-18 14:21:47,721 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:47,721 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:47,757 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:47,795 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:47,795 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:47,795 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [385458983] [2024-11-18 14:21:47,795 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [385458983] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:47,795 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:47,795 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:47,796 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1156660944] [2024-11-18 14:21:47,796 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:47,796 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:47,796 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:47,797 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:47,797 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:47,797 INFO L87 Difference]: Start difference. First operand 440 states and 570 transitions. Second operand has 3 states, 3 states have (on average 15.333333333333334) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:47,852 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:47,853 INFO L93 Difference]: Finished difference Result 878 states and 1138 transitions. [2024-11-18 14:21:47,853 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:47,853 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 15.333333333333334) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 55 [2024-11-18 14:21:47,854 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:47,857 INFO L225 Difference]: With dead ends: 878 [2024-11-18 14:21:47,857 INFO L226 Difference]: Without dead ends: 446 [2024-11-18 14:21:47,861 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:47,863 INFO L432 NwaCegarLoop]: 137 mSDtfsCounter, 38 mSDsluCounter, 96 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 38 SdHoareTripleChecker+Valid, 233 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:47,867 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [38 Valid, 233 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:47,869 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 446 states. [2024-11-18 14:21:47,911 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 446 to 440. [2024-11-18 14:21:47,913 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 440 states, 335 states have (on average 1.2507462686567163) internal successors, (419), 358 states have internal predecessors, (419), 57 states have call successors, (57), 46 states have call predecessors, (57), 47 states have return successors, (83), 56 states have call predecessors, (83), 57 states have call successors, (83) [2024-11-18 14:21:47,917 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 440 states to 440 states and 559 transitions. [2024-11-18 14:21:47,919 INFO L78 Accepts]: Start accepts. Automaton has 440 states and 559 transitions. Word has length 55 [2024-11-18 14:21:47,919 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:47,920 INFO L471 AbstractCegarLoop]: Abstraction has 440 states and 559 transitions. [2024-11-18 14:21:47,920 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 15.333333333333334) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:47,920 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 559 transitions. [2024-11-18 14:21:47,922 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-11-18 14:21:47,924 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:47,924 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:47,924 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-18 14:21:47,924 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:47,925 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:47,925 INFO L85 PathProgramCache]: Analyzing trace with hash -353979627, now seen corresponding path program 1 times [2024-11-18 14:21:47,925 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:47,925 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [890201777] [2024-11-18 14:21:47,926 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:47,926 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:47,943 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,003 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,005 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,006 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [890201777] [2024-11-18 14:21:48,006 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [890201777] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,006 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,006 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:21:48,006 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1684348454] [2024-11-18 14:21:48,006 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,007 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:21:48,007 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,008 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:21:48,008 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:48,008 INFO L87 Difference]: Start difference. First operand 440 states and 559 transitions. Second operand has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:48,054 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,054 INFO L93 Difference]: Finished difference Result 881 states and 1139 transitions. [2024-11-18 14:21:48,055 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:21:48,055 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 52 [2024-11-18 14:21:48,055 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,059 INFO L225 Difference]: With dead ends: 881 [2024-11-18 14:21:48,059 INFO L226 Difference]: Without dead ends: 449 [2024-11-18 14:21:48,061 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:48,061 INFO L432 NwaCegarLoop]: 99 mSDtfsCounter, 0 mSDsluCounter, 291 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 390 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,063 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 390 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:48,064 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 449 states. [2024-11-18 14:21:48,096 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 449 to 449. [2024-11-18 14:21:48,097 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 449 states, 344 states have (on average 1.244186046511628) internal successors, (428), 367 states have internal predecessors, (428), 57 states have call successors, (57), 46 states have call predecessors, (57), 47 states have return successors, (83), 56 states have call predecessors, (83), 57 states have call successors, (83) [2024-11-18 14:21:48,100 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 449 states to 449 states and 568 transitions. [2024-11-18 14:21:48,102 INFO L78 Accepts]: Start accepts. Automaton has 449 states and 568 transitions. Word has length 52 [2024-11-18 14:21:48,103 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,103 INFO L471 AbstractCegarLoop]: Abstraction has 449 states and 568 transitions. [2024-11-18 14:21:48,103 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:48,103 INFO L276 IsEmpty]: Start isEmpty. Operand 449 states and 568 transitions. [2024-11-18 14:21:48,105 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2024-11-18 14:21:48,105 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,105 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,105 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-18 14:21:48,105 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,106 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,106 INFO L85 PathProgramCache]: Analyzing trace with hash -2042923369, now seen corresponding path program 1 times [2024-11-18 14:21:48,106 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,106 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [677021224] [2024-11-18 14:21:48,106 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,106 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,123 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,177 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,181 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,181 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [677021224] [2024-11-18 14:21:48,182 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [677021224] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,182 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,182 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:21:48,182 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [397393781] [2024-11-18 14:21:48,182 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,183 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:21:48,183 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,183 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:21:48,183 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:21:48,183 INFO L87 Difference]: Start difference. First operand 449 states and 568 transitions. Second operand has 4 states, 4 states have (on average 10.75) internal successors, (43), 4 states have internal predecessors, (43), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:48,233 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,234 INFO L93 Difference]: Finished difference Result 840 states and 1083 transitions. [2024-11-18 14:21:48,235 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:21:48,235 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 10.75) internal successors, (43), 4 states have internal predecessors, (43), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 52 [2024-11-18 14:21:48,236 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,238 INFO L225 Difference]: With dead ends: 840 [2024-11-18 14:21:48,238 INFO L226 Difference]: Without dead ends: 399 [2024-11-18 14:21:48,240 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:21:48,241 INFO L432 NwaCegarLoop]: 100 mSDtfsCounter, 0 mSDsluCounter, 194 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 294 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,243 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 294 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:48,245 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 399 states. [2024-11-18 14:21:48,275 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 399 to 399. [2024-11-18 14:21:48,276 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 399 states, 305 states have (on average 1.2295081967213115) internal successors, (375), 325 states have internal predecessors, (375), 51 states have call successors, (51), 41 states have call predecessors, (51), 42 states have return successors, (70), 50 states have call predecessors, (70), 51 states have call successors, (70) [2024-11-18 14:21:48,278 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 399 states to 399 states and 496 transitions. [2024-11-18 14:21:48,279 INFO L78 Accepts]: Start accepts. Automaton has 399 states and 496 transitions. Word has length 52 [2024-11-18 14:21:48,279 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,280 INFO L471 AbstractCegarLoop]: Abstraction has 399 states and 496 transitions. [2024-11-18 14:21:48,280 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 10.75) internal successors, (43), 4 states have internal predecessors, (43), 2 states have call successors, (4), 1 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:48,280 INFO L276 IsEmpty]: Start isEmpty. Operand 399 states and 496 transitions. [2024-11-18 14:21:48,281 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-11-18 14:21:48,282 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,282 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,285 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-18 14:21:48,286 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,286 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,286 INFO L85 PathProgramCache]: Analyzing trace with hash -1510613325, now seen corresponding path program 1 times [2024-11-18 14:21:48,286 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,286 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [998879091] [2024-11-18 14:21:48,287 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,287 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,309 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,504 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,505 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,505 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [998879091] [2024-11-18 14:21:48,505 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [998879091] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,505 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,506 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2024-11-18 14:21:48,506 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1985123101] [2024-11-18 14:21:48,506 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,508 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-11-18 14:21:48,508 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,508 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-11-18 14:21:48,509 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=25, Invalid=65, Unknown=0, NotChecked=0, Total=90 [2024-11-18 14:21:48,509 INFO L87 Difference]: Start difference. First operand 399 states and 496 transitions. Second operand has 10 states, 10 states have (on average 4.5) internal successors, (45), 9 states have internal predecessors, (45), 3 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-18 14:21:48,928 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,929 INFO L93 Difference]: Finished difference Result 1087 states and 1410 transitions. [2024-11-18 14:21:48,929 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:21:48,929 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 4.5) internal successors, (45), 9 states have internal predecessors, (45), 3 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) Word has length 56 [2024-11-18 14:21:48,930 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,935 INFO L225 Difference]: With dead ends: 1087 [2024-11-18 14:21:48,935 INFO L226 Difference]: Without dead ends: 784 [2024-11-18 14:21:48,937 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 19 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 14 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 34 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=75, Invalid=165, Unknown=0, NotChecked=0, Total=240 [2024-11-18 14:21:48,939 INFO L432 NwaCegarLoop]: 130 mSDtfsCounter, 375 mSDsluCounter, 422 mSDsCounter, 0 mSdLazyCounter, 235 mSolverCounterSat, 87 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 383 SdHoareTripleChecker+Valid, 552 SdHoareTripleChecker+Invalid, 322 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 87 IncrementalHoareTripleChecker+Valid, 235 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,939 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [383 Valid, 552 Invalid, 322 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [87 Valid, 235 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-18 14:21:48,941 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 784 states. [2024-11-18 14:21:49,012 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 784 to 691. [2024-11-18 14:21:49,014 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 691 states, 528 states have (on average 1.2140151515151516) internal successors, (641), 560 states have internal predecessors, (641), 87 states have call successors, (87), 71 states have call predecessors, (87), 75 states have return successors, (131), 84 states have call predecessors, (131), 87 states have call successors, (131) [2024-11-18 14:21:49,018 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 691 states to 691 states and 859 transitions. [2024-11-18 14:21:49,020 INFO L78 Accepts]: Start accepts. Automaton has 691 states and 859 transitions. Word has length 56 [2024-11-18 14:21:49,020 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:49,020 INFO L471 AbstractCegarLoop]: Abstraction has 691 states and 859 transitions. [2024-11-18 14:21:49,021 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 4.5) internal successors, (45), 9 states have internal predecessors, (45), 3 states have call successors, (5), 3 states have call predecessors, (5), 3 states have return successors, (4), 3 states have call predecessors, (4), 3 states have call successors, (4) [2024-11-18 14:21:49,021 INFO L276 IsEmpty]: Start isEmpty. Operand 691 states and 859 transitions. [2024-11-18 14:21:49,023 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 97 [2024-11-18 14:21:49,023 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:49,023 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:49,023 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-18 14:21:49,024 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:49,024 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:49,024 INFO L85 PathProgramCache]: Analyzing trace with hash -1787594627, now seen corresponding path program 1 times [2024-11-18 14:21:49,024 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:49,025 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [575900671] [2024-11-18 14:21:49,025 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:49,025 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:49,051 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,255 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 19 proven. 8 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2024-11-18 14:21:49,256 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:49,256 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [575900671] [2024-11-18 14:21:49,256 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [575900671] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:49,256 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1452200006] [2024-11-18 14:21:49,256 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:49,257 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:49,257 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:49,259 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:49,261 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-18 14:21:49,363 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,366 INFO L255 TraceCheckSpWp]: Trace formula consists of 318 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-18 14:21:49,380 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:49,595 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 25 proven. 9 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-18 14:21:49,595 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:49,850 INFO L134 CoverageAnalysis]: Checked inductivity of 34 backedges. 19 proven. 8 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2024-11-18 14:21:49,850 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1452200006] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:49,850 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:49,851 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 6, 6] total 14 [2024-11-18 14:21:49,851 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1263033393] [2024-11-18 14:21:49,851 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:49,851 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-11-18 14:21:49,852 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:49,856 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-11-18 14:21:49,856 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=148, Unknown=0, NotChecked=0, Total=182 [2024-11-18 14:21:49,856 INFO L87 Difference]: Start difference. First operand 691 states and 859 transitions. Second operand has 14 states, 14 states have (on average 8.928571428571429) internal successors, (125), 12 states have internal predecessors, (125), 5 states have call successors, (17), 4 states have call predecessors, (17), 7 states have return successors, (17), 8 states have call predecessors, (17), 5 states have call successors, (17) [2024-11-18 14:21:50,259 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:50,260 INFO L93 Difference]: Finished difference Result 1489 states and 1883 transitions. [2024-11-18 14:21:50,260 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-11-18 14:21:50,261 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 8.928571428571429) internal successors, (125), 12 states have internal predecessors, (125), 5 states have call successors, (17), 4 states have call predecessors, (17), 7 states have return successors, (17), 8 states have call predecessors, (17), 5 states have call successors, (17) Word has length 96 [2024-11-18 14:21:50,261 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:50,262 INFO L225 Difference]: With dead ends: 1489 [2024-11-18 14:21:50,263 INFO L226 Difference]: Without dead ends: 0 [2024-11-18 14:21:50,267 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 211 GetRequests, 186 SyntacticMatches, 4 SemanticMatches, 21 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 85 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=101, Invalid=405, Unknown=0, NotChecked=0, Total=506 [2024-11-18 14:21:50,268 INFO L432 NwaCegarLoop]: 226 mSDtfsCounter, 174 mSDsluCounter, 1542 mSDsCounter, 0 mSdLazyCounter, 266 mSolverCounterSat, 34 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 180 SdHoareTripleChecker+Valid, 1768 SdHoareTripleChecker+Invalid, 300 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 34 IncrementalHoareTripleChecker+Valid, 266 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:50,269 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [180 Valid, 1768 Invalid, 300 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [34 Valid, 266 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:21:50,270 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-18 14:21:50,270 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-18 14:21:50,270 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-18 14:21:50,271 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-18 14:21:50,272 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 96 [2024-11-18 14:21:50,272 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:50,272 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-18 14:21:50,272 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 8.928571428571429) internal successors, (125), 12 states have internal predecessors, (125), 5 states have call successors, (17), 4 states have call predecessors, (17), 7 states have return successors, (17), 8 states have call predecessors, (17), 5 states have call successors, (17) [2024-11-18 14:21:50,272 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-18 14:21:50,272 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-18 14:21:50,275 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-18 14:21:50,294 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-18 14:21:50,476 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-18 14:21:50,479 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:50,480 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-18 14:21:55,328 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-18 14:21:55,347 WARN L156 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse0 (= |old(~pumpRunning~0)| 1)) (.cse1 (not (= 0 ~systemActive~0)))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1) (and .cse0 (<= ~waterLevel~0 2) (<= 1 ~switchedOnBeforeTS~0) .cse1))) (= ~pumpRunning~0 1)) Eliminated clause: (and (let ((.cse0 (not (= 0 ~systemActive~0)))) (or (and (= 2 ~waterLevel~0) .cse0) (and (<= ~waterLevel~0 2) (<= 1 ~switchedOnBeforeTS~0) .cse0))) (= ~pumpRunning~0 1)) [2024-11-18 14:21:55,369 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse4 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse1 (= |old(~pumpRunning~0)| 1)) (.cse2 (= |old(~pumpRunning~0)| 0)) (.cse0 (and (= ~pumpRunning~0 0) (or .cse4 (= ~waterLevel~0 1))))) (and (or (< |old(~switchedOnBeforeTS~0)| 1) (<= 1 ~switchedOnBeforeTS~0)) (or (not (= 0 ~systemActive~0)) .cse0) (let ((.cse3 (<= |old(~waterLevel~0)| 2))) (or (and .cse1 (= |old(~waterLevel~0)| 2)) (and .cse2 .cse3) (and .cse1 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse3))) (or (not .cse1) (= ~pumpRunning~0 1)) .cse4 (or (not .cse2) .cse0)))) Eliminated clause: (let ((.cse0 (= ~pumpRunning~0 0))) (and (or .cse0 (not (= 0 ~systemActive~0))) (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int)) (let ((.cse1 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (let ((.cse2 (<= ~waterLevel~0 2))) (or (and .cse1 .cse2) (and (= 2 ~waterLevel~0) .cse3) (and .cse3 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse2))) (or (not .cse1) .cse0) (or (not .cse3) (= ~pumpRunning~0 1)) (or (< |old(~switchedOnBeforeTS~0)| 1) (< 0 ~switchedOnBeforeTS~0))))))) [2024-11-18 14:21:55,378 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:21:55,383 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2) (and .cse3 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2))) (or (not .cse3) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2) (and .cse3 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2))) (or (not .cse3) (= ~pumpRunning~0 1))))) [2024-11-18 14:21:55,387 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:21:55,392 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse0 (= |old(~waterLevel~0)| 2))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (let ((.cse1 (<= |old(~waterLevel~0)| 2)) (.cse2 (not (= 0 ~systemActive~0))) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse1) (and .cse2 .cse0 .cse3) (and (<= 1 ~switchedOnBeforeTS~0) .cse1 .cse2 .cse3))) (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1)))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse0 (= |old(~waterLevel~0)| 2))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (let ((.cse1 (<= |old(~waterLevel~0)| 2)) (.cse2 (not (= 0 ~systemActive~0))) (.cse3 (= ~pumpRunning~0 1))) (or (and (= ~pumpRunning~0 0) .cse1) (and .cse2 .cse0 .cse3) (and (<= 1 ~switchedOnBeforeTS~0) .cse1 .cse2 .cse3))) (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1))))) [2024-11-18 14:21:55,395 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:21:55,408 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 18.11 02:21:55 BoogieIcfgContainer [2024-11-18 14:21:55,408 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-18 14:21:55,408 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-18 14:21:55,409 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-18 14:21:55,409 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-18 14:21:55,414 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:45" (3/4) ... [2024-11-18 14:21:55,416 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-18 14:21:55,420 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-18 14:21:55,420 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-18 14:21:55,420 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-18 14:21:55,420 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-18 14:21:55,420 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-18 14:21:55,420 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:21:55,421 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-18 14:21:55,421 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-18 14:21:55,430 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 20 nodes and edges [2024-11-18 14:21:55,432 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-18 14:21:55,432 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-18 14:21:55,433 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:21:55,433 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:21:55,549 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-18 14:21:55,549 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-18 14:21:55,550 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-18 14:21:55,550 INFO L158 Benchmark]: Toolchain (without parser) took 10716.81ms. Allocated memory was 140.5MB in the beginning and 247.5MB in the end (delta: 107.0MB). Free memory was 98.0MB in the beginning and 206.9MB in the end (delta: -108.9MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-18 14:21:55,550 INFO L158 Benchmark]: CDTParser took 0.18ms. Allocated memory is still 100.7MB. Free memory is still 68.8MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-18 14:21:55,551 INFO L158 Benchmark]: CACSL2BoogieTranslator took 540.72ms. Allocated memory is still 140.5MB. Free memory was 98.0MB in the beginning and 76.0MB in the end (delta: 21.9MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. [2024-11-18 14:21:55,552 INFO L158 Benchmark]: Boogie Procedure Inliner took 50.45ms. Allocated memory is still 140.5MB. Free memory was 76.0MB in the beginning and 74.0MB in the end (delta: 2.0MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:21:55,552 INFO L158 Benchmark]: Boogie Preprocessor took 51.90ms. Allocated memory is still 140.5MB. Free memory was 74.0MB in the beginning and 71.3MB in the end (delta: 2.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:21:55,552 INFO L158 Benchmark]: RCFGBuilder took 512.83ms. Allocated memory is still 140.5MB. Free memory was 71.3MB in the beginning and 95.3MB in the end (delta: -24.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-18 14:21:55,553 INFO L158 Benchmark]: TraceAbstraction took 9411.91ms. Allocated memory was 140.5MB in the beginning and 247.5MB in the end (delta: 107.0MB). Free memory was 95.3MB in the beginning and 215.3MB in the end (delta: -119.9MB). Peak memory consumption was 132.4MB. Max. memory is 16.1GB. [2024-11-18 14:21:55,553 INFO L158 Benchmark]: Witness Printer took 141.13ms. Allocated memory is still 247.5MB. Free memory was 215.3MB in the beginning and 206.9MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-18 14:21:55,554 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.18ms. Allocated memory is still 100.7MB. Free memory is still 68.8MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 540.72ms. Allocated memory is still 140.5MB. Free memory was 98.0MB in the beginning and 76.0MB in the end (delta: 21.9MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 50.45ms. Allocated memory is still 140.5MB. Free memory was 76.0MB in the beginning and 74.0MB in the end (delta: 2.0MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 51.90ms. Allocated memory is still 140.5MB. Free memory was 74.0MB in the beginning and 71.3MB in the end (delta: 2.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 512.83ms. Allocated memory is still 140.5MB. Free memory was 71.3MB in the beginning and 95.3MB in the end (delta: -24.0MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * TraceAbstraction took 9411.91ms. Allocated memory was 140.5MB in the beginning and 247.5MB in the end (delta: 107.0MB). Free memory was 95.3MB in the beginning and 215.3MB in the end (delta: -119.9MB). Peak memory consumption was 132.4MB. Max. memory is 16.1GB. * Witness Printer took 141.13ms. Allocated memory is still 247.5MB. Free memory was 215.3MB in the beginning and 206.9MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] - GenericResultAtLocation [Line: 266]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [266] - GenericResultAtLocation [Line: 338]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [338] - GenericResultAtLocation [Line: 704]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [704] - GenericResultAtLocation [Line: 755]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [755] - GenericResultAtLocation [Line: 855]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [855] - GenericResultAtLocation [Line: 864]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [864] - GenericResultAtLocation [Line: 899]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [899] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 860]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 98 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 4.4s, OverallIterations: 10, TraceHistogramMax: 3, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 1.6s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 932 SdHoareTripleChecker+Valid, 0.8s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 912 mSDsluCounter, 4694 SdHoareTripleChecker+Invalid, 0.6s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3389 mSDsCounter, 139 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 681 IncrementalHoareTripleChecker+Invalid, 820 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 139 mSolverCounterUnsat, 1305 mSDtfsCounter, 681 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 270 GetRequests, 210 SyntacticMatches, 4 SemanticMatches, 56 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 123 ImplicationChecksByTransitivity, 0.5s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=691occurred in iteration=9, InterpolantAutomatonStates: 59, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 10 MinimizatonAttempts, 114 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 1.6s InterpolantComputationTime, 603 NumberOfCodeBlocks, 603 NumberOfCodeBlocksAsserted, 11 NumberOfCheckSat, 687 ConstructedInterpolants, 0 QuantifiedInterpolants, 1264 SizeOfPredicates, 2 NumberOfNonLiveVariables, 318 ConjunctsInSsa, 8 ConjunctsInUnsatCore, 12 InterpolantComputations, 9 PerfectInterpolantSequences, 104/129 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 279]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 280]: Loop Invariant Derived loop invariant: (((((((splverifierCounter == 0) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (splverifierCounter == 0)) && (waterLevel <= 2))) || ((((2 == waterLevel) && (splverifierCounter == 0)) && (0 != systemActive)) && (pumpRunning == 1))) - InvariantResult [Line: 767]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 160]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((2 == waterLevel) && (0 != systemActive)) || (((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive))) && (pumpRunning == 1)) Ensures: (((pumpRunning == 0) && ((((2 == waterLevel) && (\old(pumpRunning) == 1)) && (0 != systemActive)) || ((((\old(pumpRunning) == 1) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)))) && ((((((systemActive == \old(systemActive)) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 93]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 2)) && (0 != systemActive))) Ensures: ((((((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 2)) && (0 != systemActive))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 926]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((pumpRunning == 0) && (waterLevel <= 2)) || ((((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1))) || (((2 == waterLevel) && (0 != systemActive)) && (pumpRunning == 1))) Ensures: (((((pumpRunning == 0) && (waterLevel <= 2)) || ((((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1))) || (((2 == waterLevel) && (0 != systemActive)) && (pumpRunning == 1))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel)))) - ProcedureContractResult [Line: 757]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 66]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: ((pumpRunning == 0) || (0 != systemActive)) Ensures: ((((((((\old(pumpRunning) != 1) || (\old(waterLevel) != 2)) || (waterLevel == 1)) && (((\old(pumpRunning) != 1) || (((pumpRunning == 0) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS))) || (((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)))) && ((\old(waterLevel) == waterLevel) || (0 != systemActive))) && ((((((\old(pumpRunning) == 1) && (1 <= \old(switchedOnBeforeTS))) && (\old(waterLevel) <= 2)) && (0 != systemActive)) || ((\old(pumpRunning) == 1) && (\old(waterLevel) == 2))) || ((\old(pumpRunning) == 0) && (\old(waterLevel) <= 2)))) && (((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || ((((2 == waterLevel) && (0 != systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1)))) && ((((systemActive == \old(systemActive)) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 101]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Ensures: (((((((\old(pumpRunning) == 0) && (waterLevel <= 2)) && (0 != systemActive)) || ((((\old(pumpRunning) == 1) && (waterLevel <= 2)) && (1 <= switchedOnBeforeTS)) && (0 != systemActive))) && ((\old(pumpRunning) != 1) || (pumpRunning == 1))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || ((2 == waterLevel) && (pumpRunning == 1)))) && ((((((systemActive == \old(systemActive)) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 914]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: ((((((2 == waterLevel) || (\old(waterLevel) != 2)) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && (waterLevel <= 2)) && ((((pumpRunning == 0) && (\old(waterLevel) <= 2)) || (((0 != systemActive) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || ((((1 <= switchedOnBeforeTS) && (\old(waterLevel) <= 2)) && (0 != systemActive)) && (pumpRunning == 1)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 179]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: ((((pumpRunning == 0) && (waterLevel <= 2)) || ((((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1))) || (((2 == waterLevel) && (0 != systemActive)) && (pumpRunning == 1))) Ensures: (((((((pumpRunning == 0) && (waterLevel <= 2)) || ((((waterLevel <= 2) && (1 <= switchedOnBeforeTS)) && (0 != systemActive)) && (pumpRunning == 1))) || (((2 == waterLevel) && (0 != systemActive)) && (pumpRunning == 1))) && ((pumpRunning != 0) || (\result == 0))) && ((\result == 1) || (pumpRunning != 1))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical)))) RESULT: Ultimate proved your program to be correct! [2024-11-18 14:21:55,589 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE