./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec5_product43.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 3061b6dc Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec5_product43.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash e5a4c274bc0fec0eeea8ea2f72c4bc5bbc7aef2fd24f2cf907e22c2c7f3759d4 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-3061b6d-m [2024-11-18 14:21:44,010 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-18 14:21:44,068 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-18 14:21:44,072 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-18 14:21:44,073 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-18 14:21:44,097 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-18 14:21:44,098 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-18 14:21:44,098 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-18 14:21:44,099 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-18 14:21:44,100 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-18 14:21:44,100 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-18 14:21:44,100 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-18 14:21:44,101 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-18 14:21:44,102 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-18 14:21:44,103 INFO L153 SettingsManager]: * Use SBE=true [2024-11-18 14:21:44,103 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-18 14:21:44,103 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-18 14:21:44,103 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-18 14:21:44,104 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-18 14:21:44,104 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-18 14:21:44,104 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-18 14:21:44,107 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-18 14:21:44,107 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-18 14:21:44,108 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-18 14:21:44,108 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-18 14:21:44,108 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-18 14:21:44,108 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-18 14:21:44,108 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-18 14:21:44,109 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-18 14:21:44,109 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-18 14:21:44,109 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-18 14:21:44,109 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-18 14:21:44,109 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:21:44,109 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-18 14:21:44,110 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-18 14:21:44,110 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-18 14:21:44,110 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-18 14:21:44,110 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-18 14:21:44,110 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-18 14:21:44,110 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-18 14:21:44,111 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-18 14:21:44,112 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-18 14:21:44,112 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> e5a4c274bc0fec0eeea8ea2f72c4bc5bbc7aef2fd24f2cf907e22c2c7f3759d4 [2024-11-18 14:21:44,350 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-18 14:21:44,371 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-18 14:21:44,374 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-18 14:21:44,375 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-18 14:21:44,375 INFO L274 PluginConnector]: CDTParser initialized [2024-11-18 14:21:44,377 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec5_product43.cil.c [2024-11-18 14:21:45,735 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-18 14:21:46,136 INFO L384 CDTParser]: Found 1 translation units. [2024-11-18 14:21:46,137 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product43.cil.c [2024-11-18 14:21:46,146 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/bea3f2355/2d6934020562465b8f4d3643073d0df9/FLAGd3467f96a [2024-11-18 14:21:46,333 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/bea3f2355/2d6934020562465b8f4d3643073d0df9 [2024-11-18 14:21:46,335 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-18 14:21:46,336 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-18 14:21:46,341 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-18 14:21:46,341 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-18 14:21:46,346 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-18 14:21:46,347 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,348 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@1aff49fc and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46, skipping insertion in model container [2024-11-18 14:21:46,348 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,383 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-18 14:21:46,650 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product43.cil.c[18537,18550] [2024-11-18 14:21:46,654 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:21:46,663 INFO L200 MainTranslator]: Completed pre-run [2024-11-18 14:21:46,670 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] [2024-11-18 14:21:46,671 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [415] [2024-11-18 14:21:46,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [521] [2024-11-18 14:21:46,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [589] [2024-11-18 14:21:46,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [786] [2024-11-18 14:21:46,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [881] [2024-11-18 14:21:46,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [931] [2024-11-18 14:21:46,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [966] [2024-11-18 14:21:46,739 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product43.cil.c[18537,18550] [2024-11-18 14:21:46,743 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:21:46,765 INFO L204 MainTranslator]: Completed translation [2024-11-18 14:21:46,766 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46 WrapperNode [2024-11-18 14:21:46,766 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-18 14:21:46,766 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-18 14:21:46,767 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-18 14:21:46,767 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-18 14:21:46,772 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,781 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,819 INFO L138 Inliner]: procedures = 56, calls = 100, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 205 [2024-11-18 14:21:46,820 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-18 14:21:46,820 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-18 14:21:46,821 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-18 14:21:46,821 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-18 14:21:46,830 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,830 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,835 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,853 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-18 14:21:46,857 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,858 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,865 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,868 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,869 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,870 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,872 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-18 14:21:46,872 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-18 14:21:46,872 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-18 14:21:46,872 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-18 14:21:46,873 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (1/1) ... [2024-11-18 14:21:46,879 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:21:46,887 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:46,901 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-18 14:21:46,903 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-18 14:21:46,944 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-18 14:21:46,944 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-18 14:21:46,944 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-18 14:21:46,944 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-18 14:21:46,944 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-18 14:21:46,944 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-18 14:21:46,945 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-18 14:21:46,945 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-18 14:21:46,945 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-18 14:21:46,945 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-18 14:21:47,045 INFO L238 CfgBuilder]: Building ICFG [2024-11-18 14:21:47,047 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-18 14:21:47,252 INFO L? ?]: Removed 42 outVars from TransFormulas that were not future-live. [2024-11-18 14:21:47,252 INFO L287 CfgBuilder]: Performing block encoding [2024-11-18 14:21:47,263 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-18 14:21:47,264 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-18 14:21:47,264 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:47 BoogieIcfgContainer [2024-11-18 14:21:47,264 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-18 14:21:47,266 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-18 14:21:47,266 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-18 14:21:47,269 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-18 14:21:47,269 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 18.11 02:21:46" (1/3) ... [2024-11-18 14:21:47,270 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6d6570c1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:21:47, skipping insertion in model container [2024-11-18 14:21:47,270 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:21:46" (2/3) ... [2024-11-18 14:21:47,270 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6d6570c1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:21:47, skipping insertion in model container [2024-11-18 14:21:47,271 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:47" (3/3) ... [2024-11-18 14:21:47,272 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product43.cil.c [2024-11-18 14:21:47,286 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-18 14:21:47,286 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-18 14:21:47,364 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-18 14:21:47,370 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@5f2e2dfe, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-18 14:21:47,371 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-18 14:21:47,375 INFO L276 IsEmpty]: Start isEmpty. Operand has 88 states, 70 states have (on average 1.3714285714285714) internal successors, (96), 76 states have internal predecessors, (96), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 9 states have call predecessors, (10), 10 states have call successors, (10) [2024-11-18 14:21:47,383 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-18 14:21:47,384 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:47,384 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:47,385 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:47,389 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:47,390 INFO L85 PathProgramCache]: Analyzing trace with hash 991645006, now seen corresponding path program 1 times [2024-11-18 14:21:47,416 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:47,416 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [757481652] [2024-11-18 14:21:47,417 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:47,417 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:47,541 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:47,625 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:47,626 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:47,626 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [757481652] [2024-11-18 14:21:47,627 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [757481652] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:47,627 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:47,627 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-18 14:21:47,628 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1722143007] [2024-11-18 14:21:47,629 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:47,632 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-18 14:21:47,634 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:47,655 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-18 14:21:47,655 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:21:47,657 INFO L87 Difference]: Start difference. First operand has 88 states, 70 states have (on average 1.3714285714285714) internal successors, (96), 76 states have internal predecessors, (96), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 9 states have call predecessors, (10), 10 states have call successors, (10) Second operand has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:47,683 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:47,683 INFO L93 Difference]: Finished difference Result 167 states and 226 transitions. [2024-11-18 14:21:47,684 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-18 14:21:47,685 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 32 [2024-11-18 14:21:47,685 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:47,692 INFO L225 Difference]: With dead ends: 167 [2024-11-18 14:21:47,692 INFO L226 Difference]: Without dead ends: 79 [2024-11-18 14:21:47,695 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:21:47,697 INFO L432 NwaCegarLoop]: 110 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 110 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:47,698 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 110 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:47,710 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 79 states. [2024-11-18 14:21:47,724 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 79 to 79. [2024-11-18 14:21:47,726 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 79 states, 63 states have (on average 1.3015873015873016) internal successors, (82), 68 states have internal predecessors, (82), 10 states have call successors, (10), 6 states have call predecessors, (10), 5 states have return successors, (9), 8 states have call predecessors, (9), 9 states have call successors, (9) [2024-11-18 14:21:47,727 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 79 states to 79 states and 101 transitions. [2024-11-18 14:21:47,729 INFO L78 Accepts]: Start accepts. Automaton has 79 states and 101 transitions. Word has length 32 [2024-11-18 14:21:47,729 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:47,729 INFO L471 AbstractCegarLoop]: Abstraction has 79 states and 101 transitions. [2024-11-18 14:21:47,729 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:47,730 INFO L276 IsEmpty]: Start isEmpty. Operand 79 states and 101 transitions. [2024-11-18 14:21:47,732 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2024-11-18 14:21:47,732 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:47,732 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:47,732 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-18 14:21:47,733 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:47,733 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:47,733 INFO L85 PathProgramCache]: Analyzing trace with hash -1721110732, now seen corresponding path program 1 times [2024-11-18 14:21:47,734 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:47,734 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [338889567] [2024-11-18 14:21:47,734 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:47,734 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:47,757 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:47,886 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:47,887 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:47,887 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [338889567] [2024-11-18 14:21:47,887 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [338889567] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:47,887 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:47,887 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:21:47,888 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [303759606] [2024-11-18 14:21:47,888 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:47,889 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:21:47,890 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:47,891 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:21:47,891 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:21:47,891 INFO L87 Difference]: Start difference. First operand 79 states and 101 transitions. Second operand has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,062 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,063 INFO L93 Difference]: Finished difference Result 273 states and 364 transitions. [2024-11-18 14:21:48,063 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-18 14:21:48,063 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 37 [2024-11-18 14:21:48,064 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,065 INFO L225 Difference]: With dead ends: 273 [2024-11-18 14:21:48,065 INFO L226 Difference]: Without dead ends: 202 [2024-11-18 14:21:48,066 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56 [2024-11-18 14:21:48,067 INFO L432 NwaCegarLoop]: 108 mSDtfsCounter, 226 mSDsluCounter, 301 mSDsCounter, 0 mSdLazyCounter, 84 mSolverCounterSat, 16 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 226 SdHoareTripleChecker+Valid, 409 SdHoareTripleChecker+Invalid, 100 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 16 IncrementalHoareTripleChecker+Valid, 84 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,068 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [226 Valid, 409 Invalid, 100 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [16 Valid, 84 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:21:48,068 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 202 states. [2024-11-18 14:21:48,086 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 202 to 192. [2024-11-18 14:21:48,087 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 192 states, 149 states have (on average 1.3221476510067114) internal successors, (197), 160 states have internal predecessors, (197), 28 states have call successors, (28), 17 states have call predecessors, (28), 14 states have return successors, (28), 23 states have call predecessors, (28), 25 states have call successors, (28) [2024-11-18 14:21:48,089 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 192 states to 192 states and 253 transitions. [2024-11-18 14:21:48,089 INFO L78 Accepts]: Start accepts. Automaton has 192 states and 253 transitions. Word has length 37 [2024-11-18 14:21:48,089 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,090 INFO L471 AbstractCegarLoop]: Abstraction has 192 states and 253 transitions. [2024-11-18 14:21:48,090 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,090 INFO L276 IsEmpty]: Start isEmpty. Operand 192 states and 253 transitions. [2024-11-18 14:21:48,091 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 43 [2024-11-18 14:21:48,091 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,091 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,092 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-18 14:21:48,092 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,092 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,092 INFO L85 PathProgramCache]: Analyzing trace with hash 845444465, now seen corresponding path program 1 times [2024-11-18 14:21:48,092 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,093 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [739933884] [2024-11-18 14:21:48,093 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,093 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,112 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,143 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,143 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,144 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [739933884] [2024-11-18 14:21:48,144 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [739933884] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,144 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,144 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:48,144 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1986672996] [2024-11-18 14:21:48,144 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,145 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:48,145 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,145 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:48,145 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:48,146 INFO L87 Difference]: Start difference. First operand 192 states and 253 transitions. Second operand has 3 states, 3 states have (on average 11.0) internal successors, (33), 3 states have internal predecessors, (33), 2 states have call successors, (4), 1 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:48,207 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,208 INFO L93 Difference]: Finished difference Result 479 states and 661 transitions. [2024-11-18 14:21:48,208 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:48,208 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 11.0) internal successors, (33), 3 states have internal predecessors, (33), 2 states have call successors, (4), 1 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 42 [2024-11-18 14:21:48,209 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,211 INFO L225 Difference]: With dead ends: 479 [2024-11-18 14:21:48,211 INFO L226 Difference]: Without dead ends: 295 [2024-11-18 14:21:48,213 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:48,214 INFO L432 NwaCegarLoop]: 107 mSDtfsCounter, 90 mSDsluCounter, 68 mSDsCounter, 0 mSdLazyCounter, 8 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 90 SdHoareTripleChecker+Valid, 175 SdHoareTripleChecker+Invalid, 14 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 8 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,214 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [90 Valid, 175 Invalid, 14 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 8 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:48,215 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 295 states. [2024-11-18 14:21:48,256 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 295 to 293. [2024-11-18 14:21:48,257 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 293 states, 224 states have (on average 1.2946428571428572) internal successors, (290), 239 states have internal predecessors, (290), 44 states have call successors, (44), 29 states have call predecessors, (44), 24 states have return successors, (57), 39 states have call predecessors, (57), 39 states have call successors, (57) [2024-11-18 14:21:48,259 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 293 states to 293 states and 391 transitions. [2024-11-18 14:21:48,260 INFO L78 Accepts]: Start accepts. Automaton has 293 states and 391 transitions. Word has length 42 [2024-11-18 14:21:48,260 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,260 INFO L471 AbstractCegarLoop]: Abstraction has 293 states and 391 transitions. [2024-11-18 14:21:48,261 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 11.0) internal successors, (33), 3 states have internal predecessors, (33), 2 states have call successors, (4), 1 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-18 14:21:48,261 INFO L276 IsEmpty]: Start isEmpty. Operand 293 states and 391 transitions. [2024-11-18 14:21:48,262 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-18 14:21:48,262 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,262 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,263 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-18 14:21:48,263 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,263 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,263 INFO L85 PathProgramCache]: Analyzing trace with hash 1493412905, now seen corresponding path program 1 times [2024-11-18 14:21:48,263 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,264 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [88188522] [2024-11-18 14:21:48,264 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,264 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,276 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,389 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-18 14:21:48,390 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,390 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [88188522] [2024-11-18 14:21:48,390 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [88188522] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,390 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,391 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:21:48,391 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [5037100] [2024-11-18 14:21:48,391 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,391 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:21:48,391 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,392 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:21:48,392 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:21:48,392 INFO L87 Difference]: Start difference. First operand 293 states and 391 transitions. Second operand has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,501 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,501 INFO L93 Difference]: Finished difference Result 575 states and 786 transitions. [2024-11-18 14:21:48,503 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-18 14:21:48,503 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 41 [2024-11-18 14:21:48,504 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,506 INFO L225 Difference]: With dead ends: 575 [2024-11-18 14:21:48,507 INFO L226 Difference]: Without dead ends: 290 [2024-11-18 14:21:48,509 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-18 14:21:48,510 INFO L432 NwaCegarLoop]: 101 mSDtfsCounter, 81 mSDsluCounter, 334 mSDsCounter, 0 mSdLazyCounter, 61 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 83 SdHoareTripleChecker+Valid, 435 SdHoareTripleChecker+Invalid, 65 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 61 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,513 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [83 Valid, 435 Invalid, 65 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 61 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:21:48,514 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 290 states. [2024-11-18 14:21:48,549 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 290 to 290. [2024-11-18 14:21:48,553 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 290 states, 221 states have (on average 1.2714932126696832) internal successors, (281), 236 states have internal predecessors, (281), 44 states have call successors, (44), 29 states have call predecessors, (44), 24 states have return successors, (57), 39 states have call predecessors, (57), 39 states have call successors, (57) [2024-11-18 14:21:48,554 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 290 states to 290 states and 382 transitions. [2024-11-18 14:21:48,555 INFO L78 Accepts]: Start accepts. Automaton has 290 states and 382 transitions. Word has length 41 [2024-11-18 14:21:48,555 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,555 INFO L471 AbstractCegarLoop]: Abstraction has 290 states and 382 transitions. [2024-11-18 14:21:48,555 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,556 INFO L276 IsEmpty]: Start isEmpty. Operand 290 states and 382 transitions. [2024-11-18 14:21:48,561 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 47 [2024-11-18 14:21:48,561 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,562 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,562 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-18 14:21:48,562 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,563 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,563 INFO L85 PathProgramCache]: Analyzing trace with hash 1467661152, now seen corresponding path program 1 times [2024-11-18 14:21:48,563 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,563 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [532083267] [2024-11-18 14:21:48,563 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,567 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,633 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,633 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,633 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [532083267] [2024-11-18 14:21:48,634 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [532083267] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,634 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,634 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:48,634 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1500755687] [2024-11-18 14:21:48,634 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,634 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:48,634 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,635 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:48,637 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:48,638 INFO L87 Difference]: Start difference. First operand 290 states and 382 transitions. Second operand has 3 states, 3 states have (on average 12.666666666666666) internal successors, (38), 3 states have internal predecessors, (38), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:48,653 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,653 INFO L93 Difference]: Finished difference Result 432 states and 547 transitions. [2024-11-18 14:21:48,654 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:48,654 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 12.666666666666666) internal successors, (38), 3 states have internal predecessors, (38), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 46 [2024-11-18 14:21:48,654 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,655 INFO L225 Difference]: With dead ends: 432 [2024-11-18 14:21:48,655 INFO L226 Difference]: Without dead ends: 245 [2024-11-18 14:21:48,656 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:48,657 INFO L432 NwaCegarLoop]: 88 mSDtfsCounter, 17 mSDsluCounter, 67 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 155 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,661 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 155 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:48,662 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 245 states. [2024-11-18 14:21:48,681 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 245 to 245. [2024-11-18 14:21:48,683 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 245 states, 191 states have (on average 1.287958115183246) internal successors, (246), 206 states have internal predecessors, (246), 29 states have call successors, (29), 24 states have call predecessors, (29), 24 states have return successors, (35), 29 states have call predecessors, (35), 29 states have call successors, (35) [2024-11-18 14:21:48,684 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 245 states to 245 states and 310 transitions. [2024-11-18 14:21:48,685 INFO L78 Accepts]: Start accepts. Automaton has 245 states and 310 transitions. Word has length 46 [2024-11-18 14:21:48,685 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,685 INFO L471 AbstractCegarLoop]: Abstraction has 245 states and 310 transitions. [2024-11-18 14:21:48,686 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 12.666666666666666) internal successors, (38), 3 states have internal predecessors, (38), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:21:48,686 INFO L276 IsEmpty]: Start isEmpty. Operand 245 states and 310 transitions. [2024-11-18 14:21:48,688 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2024-11-18 14:21:48,688 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,690 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,690 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-18 14:21:48,690 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,691 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,691 INFO L85 PathProgramCache]: Analyzing trace with hash -1271259535, now seen corresponding path program 1 times [2024-11-18 14:21:48,691 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,691 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1905938141] [2024-11-18 14:21:48,691 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,691 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,715 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,785 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,789 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,789 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1905938141] [2024-11-18 14:21:48,789 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1905938141] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,789 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,790 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:21:48,790 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2095520511] [2024-11-18 14:21:48,790 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,790 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:21:48,790 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,790 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:21:48,790 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:48,791 INFO L87 Difference]: Start difference. First operand 245 states and 310 transitions. Second operand has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,814 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,815 INFO L93 Difference]: Finished difference Result 488 states and 630 transitions. [2024-11-18 14:21:48,815 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:21:48,816 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 50 [2024-11-18 14:21:48,816 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,817 INFO L225 Difference]: With dead ends: 488 [2024-11-18 14:21:48,817 INFO L226 Difference]: Without dead ends: 251 [2024-11-18 14:21:48,818 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:21:48,818 INFO L432 NwaCegarLoop]: 86 mSDtfsCounter, 0 mSDsluCounter, 251 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 337 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,819 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 337 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:48,822 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 251 states. [2024-11-18 14:21:48,835 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 251 to 251. [2024-11-18 14:21:48,836 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 251 states, 197 states have (on average 1.2791878172588833) internal successors, (252), 212 states have internal predecessors, (252), 29 states have call successors, (29), 24 states have call predecessors, (29), 24 states have return successors, (35), 29 states have call predecessors, (35), 29 states have call successors, (35) [2024-11-18 14:21:48,838 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 251 states to 251 states and 316 transitions. [2024-11-18 14:21:48,838 INFO L78 Accepts]: Start accepts. Automaton has 251 states and 316 transitions. Word has length 50 [2024-11-18 14:21:48,839 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:48,839 INFO L471 AbstractCegarLoop]: Abstraction has 251 states and 316 transitions. [2024-11-18 14:21:48,839 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 8.6) internal successors, (43), 5 states have internal predecessors, (43), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,839 INFO L276 IsEmpty]: Start isEmpty. Operand 251 states and 316 transitions. [2024-11-18 14:21:48,841 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2024-11-18 14:21:48,841 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:48,841 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:48,841 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-18 14:21:48,842 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:48,842 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:48,842 INFO L85 PathProgramCache]: Analyzing trace with hash -848557709, now seen corresponding path program 1 times [2024-11-18 14:21:48,842 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:48,842 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [778274154] [2024-11-18 14:21:48,842 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:48,843 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:48,859 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:48,949 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:48,949 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:48,950 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [778274154] [2024-11-18 14:21:48,950 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [778274154] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:48,951 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:48,952 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:21:48,952 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [625082212] [2024-11-18 14:21:48,952 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:48,952 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:21:48,952 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:48,953 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:21:48,953 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:21:48,953 INFO L87 Difference]: Start difference. First operand 251 states and 316 transitions. Second operand has 6 states, 6 states have (on average 7.166666666666667) internal successors, (43), 6 states have internal predecessors, (43), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:48,981 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:48,982 INFO L93 Difference]: Finished difference Result 498 states and 640 transitions. [2024-11-18 14:21:48,982 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-18 14:21:48,983 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.166666666666667) internal successors, (43), 6 states have internal predecessors, (43), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 50 [2024-11-18 14:21:48,983 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:48,984 INFO L225 Difference]: With dead ends: 498 [2024-11-18 14:21:48,985 INFO L226 Difference]: Without dead ends: 255 [2024-11-18 14:21:48,986 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:21:48,986 INFO L432 NwaCegarLoop]: 85 mSDtfsCounter, 0 mSDsluCounter, 332 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 417 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:48,988 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 417 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:48,988 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 255 states. [2024-11-18 14:21:49,001 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 255 to 255. [2024-11-18 14:21:49,002 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 255 states, 201 states have (on average 1.2736318407960199) internal successors, (256), 216 states have internal predecessors, (256), 29 states have call successors, (29), 24 states have call predecessors, (29), 24 states have return successors, (35), 29 states have call predecessors, (35), 29 states have call successors, (35) [2024-11-18 14:21:49,004 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 255 states to 255 states and 320 transitions. [2024-11-18 14:21:49,005 INFO L78 Accepts]: Start accepts. Automaton has 255 states and 320 transitions. Word has length 50 [2024-11-18 14:21:49,005 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:49,006 INFO L471 AbstractCegarLoop]: Abstraction has 255 states and 320 transitions. [2024-11-18 14:21:49,006 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.166666666666667) internal successors, (43), 6 states have internal predecessors, (43), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:49,006 INFO L276 IsEmpty]: Start isEmpty. Operand 255 states and 320 transitions. [2024-11-18 14:21:49,006 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2024-11-18 14:21:49,006 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:49,007 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:49,007 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-18 14:21:49,007 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:49,007 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:49,008 INFO L85 PathProgramCache]: Analyzing trace with hash 1640971253, now seen corresponding path program 1 times [2024-11-18 14:21:49,008 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:49,008 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1427354452] [2024-11-18 14:21:49,008 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:49,008 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:49,023 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,073 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:49,073 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:49,073 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1427354452] [2024-11-18 14:21:49,073 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1427354452] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:49,073 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:49,074 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:49,074 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2144713961] [2024-11-18 14:21:49,074 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:49,074 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:49,074 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:49,075 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:49,075 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:49,075 INFO L87 Difference]: Start difference. First operand 255 states and 320 transitions. Second operand has 3 states, 3 states have (on average 14.333333333333334) internal successors, (43), 3 states have internal predecessors, (43), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:49,104 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:49,105 INFO L93 Difference]: Finished difference Result 629 states and 799 transitions. [2024-11-18 14:21:49,105 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:49,105 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 14.333333333333334) internal successors, (43), 3 states have internal predecessors, (43), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 50 [2024-11-18 14:21:49,107 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:49,109 INFO L225 Difference]: With dead ends: 629 [2024-11-18 14:21:49,109 INFO L226 Difference]: Without dead ends: 382 [2024-11-18 14:21:49,109 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:49,110 INFO L432 NwaCegarLoop]: 86 mSDtfsCounter, 39 mSDsluCounter, 74 mSDsCounter, 0 mSdLazyCounter, 10 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 39 SdHoareTripleChecker+Valid, 160 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 10 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:49,112 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [39 Valid, 160 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 10 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:49,113 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 382 states. [2024-11-18 14:21:49,134 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 382 to 382. [2024-11-18 14:21:49,134 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 382 states, 300 states have (on average 1.2466666666666666) internal successors, (374), 318 states have internal predecessors, (374), 46 states have call successors, (46), 38 states have call predecessors, (46), 35 states have return successors, (53), 43 states have call predecessors, (53), 46 states have call successors, (53) [2024-11-18 14:21:49,136 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 382 states to 382 states and 473 transitions. [2024-11-18 14:21:49,136 INFO L78 Accepts]: Start accepts. Automaton has 382 states and 473 transitions. Word has length 50 [2024-11-18 14:21:49,137 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:49,137 INFO L471 AbstractCegarLoop]: Abstraction has 382 states and 473 transitions. [2024-11-18 14:21:49,137 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 14.333333333333334) internal successors, (43), 3 states have internal predecessors, (43), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:21:49,137 INFO L276 IsEmpty]: Start isEmpty. Operand 382 states and 473 transitions. [2024-11-18 14:21:49,138 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2024-11-18 14:21:49,138 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:49,139 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:49,139 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-18 14:21:49,139 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:49,139 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:49,141 INFO L85 PathProgramCache]: Analyzing trace with hash 832166863, now seen corresponding path program 1 times [2024-11-18 14:21:49,142 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:49,142 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [750760945] [2024-11-18 14:21:49,143 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:49,143 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:49,160 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,306 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:21:49,307 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:49,307 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [750760945] [2024-11-18 14:21:49,308 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [750760945] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:49,308 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:49,308 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-18 14:21:49,308 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [577888134] [2024-11-18 14:21:49,308 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:49,308 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-18 14:21:49,308 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:49,309 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-18 14:21:49,309 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=41, Unknown=0, NotChecked=0, Total=56 [2024-11-18 14:21:49,309 INFO L87 Difference]: Start difference. First operand 382 states and 473 transitions. Second operand has 8 states, 8 states have (on average 5.625) internal successors, (45), 7 states have internal predecessors, (45), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-18 14:21:49,587 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:49,588 INFO L93 Difference]: Finished difference Result 1232 states and 1578 transitions. [2024-11-18 14:21:49,588 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:21:49,588 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 5.625) internal successors, (45), 7 states have internal predecessors, (45), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 54 [2024-11-18 14:21:49,589 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:49,594 INFO L225 Difference]: With dead ends: 1232 [2024-11-18 14:21:49,594 INFO L226 Difference]: Without dead ends: 985 [2024-11-18 14:21:49,597 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=47, Invalid=109, Unknown=0, NotChecked=0, Total=156 [2024-11-18 14:21:49,599 INFO L432 NwaCegarLoop]: 138 mSDtfsCounter, 312 mSDsluCounter, 444 mSDsCounter, 0 mSdLazyCounter, 172 mSolverCounterSat, 63 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 316 SdHoareTripleChecker+Valid, 582 SdHoareTripleChecker+Invalid, 235 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 63 IncrementalHoareTripleChecker+Valid, 172 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:49,600 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [316 Valid, 582 Invalid, 235 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [63 Valid, 172 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:21:49,601 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 985 states. [2024-11-18 14:21:49,653 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 985 to 931. [2024-11-18 14:21:49,655 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 931 states, 737 states have (on average 1.2293080054274084) internal successors, (906), 787 states have internal predecessors, (906), 106 states have call successors, (106), 81 states have call predecessors, (106), 87 states have return successors, (132), 101 states have call predecessors, (132), 106 states have call successors, (132) [2024-11-18 14:21:49,663 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 931 states to 931 states and 1144 transitions. [2024-11-18 14:21:49,664 INFO L78 Accepts]: Start accepts. Automaton has 931 states and 1144 transitions. Word has length 54 [2024-11-18 14:21:49,665 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:49,665 INFO L471 AbstractCegarLoop]: Abstraction has 931 states and 1144 transitions. [2024-11-18 14:21:49,665 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 5.625) internal successors, (45), 7 states have internal predecessors, (45), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2024-11-18 14:21:49,665 INFO L276 IsEmpty]: Start isEmpty. Operand 931 states and 1144 transitions. [2024-11-18 14:21:49,667 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 86 [2024-11-18 14:21:49,667 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:49,667 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:49,667 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-18 14:21:49,667 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:49,668 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:49,668 INFO L85 PathProgramCache]: Analyzing trace with hash -1448493659, now seen corresponding path program 1 times [2024-11-18 14:21:49,668 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:49,668 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [170778676] [2024-11-18 14:21:49,668 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:49,668 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:49,687 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,802 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 18 proven. 6 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-11-18 14:21:49,802 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:49,802 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [170778676] [2024-11-18 14:21:49,802 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [170778676] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:21:49,802 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1838999631] [2024-11-18 14:21:49,802 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:49,803 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:21:49,803 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:21:49,805 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:21:49,810 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-18 14:21:49,911 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:49,916 INFO L255 TraceCheckSpWp]: Trace formula consists of 294 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-18 14:21:49,926 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:21:50,078 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 22 proven. 7 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-18 14:21:50,080 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:21:50,244 INFO L134 CoverageAnalysis]: Checked inductivity of 29 backedges. 18 proven. 6 refuted. 0 times theorem prover too weak. 5 trivial. 0 not checked. [2024-11-18 14:21:50,245 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1838999631] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:21:50,245 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:21:50,245 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 6, 6] total 14 [2024-11-18 14:21:50,245 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [750797233] [2024-11-18 14:21:50,245 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:21:50,245 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-11-18 14:21:50,246 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:50,246 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-11-18 14:21:50,246 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=148, Unknown=0, NotChecked=0, Total=182 [2024-11-18 14:21:50,246 INFO L87 Difference]: Start difference. First operand 931 states and 1144 transitions. Second operand has 14 states, 14 states have (on average 8.0) internal successors, (112), 12 states have internal predecessors, (112), 5 states have call successors, (14), 4 states have call predecessors, (14), 7 states have return successors, (13), 7 states have call predecessors, (13), 5 states have call successors, (13) [2024-11-18 14:21:50,577 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:50,578 INFO L93 Difference]: Finished difference Result 1703 states and 2160 transitions. [2024-11-18 14:21:50,578 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-11-18 14:21:50,578 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 8.0) internal successors, (112), 12 states have internal predecessors, (112), 5 states have call successors, (14), 4 states have call predecessors, (14), 7 states have return successors, (13), 7 states have call predecessors, (13), 5 states have call successors, (13) Word has length 85 [2024-11-18 14:21:50,578 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:50,582 INFO L225 Difference]: With dead ends: 1703 [2024-11-18 14:21:50,582 INFO L226 Difference]: Without dead ends: 901 [2024-11-18 14:21:50,585 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 195 GetRequests, 165 SyntacticMatches, 4 SemanticMatches, 26 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 147 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=150, Invalid=606, Unknown=0, NotChecked=0, Total=756 [2024-11-18 14:21:50,586 INFO L432 NwaCegarLoop]: 167 mSDtfsCounter, 230 mSDsluCounter, 1194 mSDsCounter, 0 mSdLazyCounter, 268 mSolverCounterSat, 55 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 238 SdHoareTripleChecker+Valid, 1361 SdHoareTripleChecker+Invalid, 323 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 55 IncrementalHoareTripleChecker+Valid, 268 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:50,586 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [238 Valid, 1361 Invalid, 323 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [55 Valid, 268 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:21:50,587 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 901 states. [2024-11-18 14:21:50,626 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 901 to 818. [2024-11-18 14:21:50,627 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 818 states, 633 states have (on average 1.2116903633491312) internal successors, (767), 677 states have internal predecessors, (767), 100 states have call successors, (100), 84 states have call predecessors, (100), 84 states have return successors, (119), 89 states have call predecessors, (119), 100 states have call successors, (119) [2024-11-18 14:21:50,630 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 818 states to 818 states and 986 transitions. [2024-11-18 14:21:50,632 INFO L78 Accepts]: Start accepts. Automaton has 818 states and 986 transitions. Word has length 85 [2024-11-18 14:21:50,632 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:50,632 INFO L471 AbstractCegarLoop]: Abstraction has 818 states and 986 transitions. [2024-11-18 14:21:50,632 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 8.0) internal successors, (112), 12 states have internal predecessors, (112), 5 states have call successors, (14), 4 states have call predecessors, (14), 7 states have return successors, (13), 7 states have call predecessors, (13), 5 states have call successors, (13) [2024-11-18 14:21:50,633 INFO L276 IsEmpty]: Start isEmpty. Operand 818 states and 986 transitions. [2024-11-18 14:21:50,635 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 159 [2024-11-18 14:21:50,635 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:21:50,635 INFO L215 NwaCegarLoop]: trace histogram [5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:50,653 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-18 14:21:50,836 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-18 14:21:50,837 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:21:50,837 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:21:50,838 INFO L85 PathProgramCache]: Analyzing trace with hash -366703378, now seen corresponding path program 1 times [2024-11-18 14:21:50,838 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:21:50,838 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1947872529] [2024-11-18 14:21:50,838 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:21:50,838 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:21:50,861 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:21:50,924 INFO L134 CoverageAnalysis]: Checked inductivity of 175 backedges. 47 proven. 0 refuted. 0 times theorem prover too weak. 128 trivial. 0 not checked. [2024-11-18 14:21:50,924 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:21:50,924 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1947872529] [2024-11-18 14:21:50,924 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1947872529] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:21:50,924 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:21:50,924 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:21:50,924 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [62963867] [2024-11-18 14:21:50,924 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:21:50,925 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:21:50,925 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:21:50,925 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:21:50,925 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:50,925 INFO L87 Difference]: Start difference. First operand 818 states and 986 transitions. Second operand has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 3 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2024-11-18 14:21:50,975 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:21:50,975 INFO L93 Difference]: Finished difference Result 993 states and 1205 transitions. [2024-11-18 14:21:50,979 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:21:50,980 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 3 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) Word has length 158 [2024-11-18 14:21:50,980 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:21:50,981 INFO L225 Difference]: With dead ends: 993 [2024-11-18 14:21:50,981 INFO L226 Difference]: Without dead ends: 0 [2024-11-18 14:21:50,987 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:21:50,988 INFO L432 NwaCegarLoop]: 122 mSDtfsCounter, 39 mSDsluCounter, 82 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 39 SdHoareTripleChecker+Valid, 204 SdHoareTripleChecker+Invalid, 3 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:21:50,988 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [39 Valid, 204 Invalid, 3 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:21:50,988 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-18 14:21:50,988 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-18 14:21:50,988 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-18 14:21:50,989 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-18 14:21:50,989 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 158 [2024-11-18 14:21:50,989 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:21:50,989 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-18 14:21:50,989 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 26.666666666666668) internal successors, (80), 3 states have internal predecessors, (80), 3 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (6), 3 states have call predecessors, (6), 3 states have call successors, (6) [2024-11-18 14:21:50,989 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-18 14:21:50,990 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-18 14:21:50,992 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-18 14:21:50,992 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10 [2024-11-18 14:21:50,994 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:21:51,000 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-18 14:21:53,816 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-18 14:21:53,869 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse8 (= |old(~pumpRunning~0)| 1)) (.cse9 (= 0 ~systemActive~0))) (let ((.cse4 (not .cse9)) (.cse1 (= |old(~waterLevel~0)| 1)) (.cse5 (= |old(~pumpRunning~0)| 0)) (.cse0 (= |old(~waterLevel~0)| 2)) (.cse2 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse6 (not .cse8)) (.cse3 (<= 1 ~switchedOnBeforeTS~0))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (or (not .cse1) .cse2 .cse3 .cse4) (or (not .cse5) (= ~pumpRunning~0 0)) (or .cse6 (= ~pumpRunning~0 1)) (or (not (= ~switchedOnBeforeTS~0 0)) .cse4 (= |old(~switchedOnBeforeTS~0)| 0)) (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1)) (let ((.cse7 (= 1 ~systemActive~0))) (or (and .cse7 .cse8 .cse0) (and .cse1 .cse7 .cse5) (and .cse7 .cse8 (<= 1 |old(~switchedOnBeforeTS~0)|)) (and .cse5 .cse9) (and .cse7 .cse5 .cse0))) (or .cse2 .cse6 .cse3)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse9 (= 0 ~systemActive~0)) (.cse8 (= |old(~pumpRunning~0)| 1))) (let ((.cse1 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse2 (< 0 ~switchedOnBeforeTS~0)) (.cse3 (not .cse8)) (.cse5 (not .cse9)) (.cse4 (= |old(~waterLevel~0)| 1)) (.cse6 (= |old(~pumpRunning~0)| 0)) (.cse0 (= |old(~waterLevel~0)| 2))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (or .cse1 .cse2 .cse3) (or (not .cse4) .cse1 .cse2 .cse5) (or (not .cse6) (= ~pumpRunning~0 0)) (or .cse3 (= ~pumpRunning~0 1)) (or (not (= ~switchedOnBeforeTS~0 0)) .cse5 (= |old(~switchedOnBeforeTS~0)| 0)) (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1)) (let ((.cse7 (= 1 ~systemActive~0))) (or (and .cse7 .cse8 .cse0) (and .cse4 .cse7 .cse6) (and .cse7 .cse8 (<= 1 |old(~switchedOnBeforeTS~0)|)) (and .cse6 .cse9) (and .cse7 .cse6 .cse0))))))) [2024-11-18 14:21:53,886 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:21:53,898 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse0 (= |old(~waterLevel~0)| 2))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~pumpRunning~0 1)) (.cse3 (= ~pumpRunning~0 0))) (or (and .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2) (and .cse3 .cse1 .cse0) (and .cse3 (= |old(~waterLevel~0)| 1) .cse1) (and .cse1 .cse0 .cse2) (and .cse3 (= 0 ~systemActive~0)))) (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1)))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse0 (= |old(~waterLevel~0)| 2))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse2 (= ~pumpRunning~0 1)) (.cse3 (= ~pumpRunning~0 0))) (or (and .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2) (and .cse3 .cse1 .cse0) (and .cse3 (= |old(~waterLevel~0)| 1) .cse1) (and .cse1 .cse0 .cse2) (and .cse3 (= 0 ~systemActive~0)))) (or (= |old(~waterLevel~0)| ~waterLevel~0) (= ~waterLevel~0 1))))) [2024-11-18 14:21:53,905 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:21:53,917 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 18.11 02:21:53 BoogieIcfgContainer [2024-11-18 14:21:53,918 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-18 14:21:53,919 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-18 14:21:53,919 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-18 14:21:53,919 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-18 14:21:53,920 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:21:47" (3/4) ... [2024-11-18 14:21:53,922 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-18 14:21:53,927 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-18 14:21:53,927 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-18 14:21:53,927 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-18 14:21:53,927 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-18 14:21:53,927 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-18 14:21:53,927 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-18 14:21:53,933 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 20 nodes and edges [2024-11-18 14:21:53,935 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-18 14:21:53,935 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-18 14:21:53,935 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:21:53,935 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:21:54,031 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-18 14:21:54,031 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-18 14:21:54,031 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-18 14:21:54,032 INFO L158 Benchmark]: Toolchain (without parser) took 7695.63ms. Allocated memory was 130.0MB in the beginning and 262.1MB in the end (delta: 132.1MB). Free memory was 99.8MB in the beginning and 204.1MB in the end (delta: -104.4MB). Peak memory consumption was 28.5MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,032 INFO L158 Benchmark]: CDTParser took 0.18ms. Allocated memory is still 130.0MB. Free memory was 96.9MB in the beginning and 96.8MB in the end (delta: 28.1kB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-18 14:21:54,032 INFO L158 Benchmark]: CACSL2BoogieTranslator took 425.20ms. Allocated memory is still 130.0MB. Free memory was 99.3MB in the beginning and 78.0MB in the end (delta: 21.3MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,032 INFO L158 Benchmark]: Boogie Procedure Inliner took 53.26ms. Allocated memory is still 130.0MB. Free memory was 78.0MB in the beginning and 75.5MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,033 INFO L158 Benchmark]: Boogie Preprocessor took 51.42ms. Allocated memory is still 130.0MB. Free memory was 75.5MB in the beginning and 73.4MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,033 INFO L158 Benchmark]: RCFGBuilder took 392.31ms. Allocated memory is still 130.0MB. Free memory was 73.4MB in the beginning and 55.5MB in the end (delta: 17.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,033 INFO L158 Benchmark]: TraceAbstraction took 6652.09ms. Allocated memory was 130.0MB in the beginning and 262.1MB in the end (delta: 132.1MB). Free memory was 55.0MB in the beginning and 211.5MB in the end (delta: -156.5MB). Peak memory consumption was 89.3MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,033 INFO L158 Benchmark]: Witness Printer took 112.29ms. Allocated memory is still 262.1MB. Free memory was 211.5MB in the beginning and 204.1MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2024-11-18 14:21:54,034 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.18ms. Allocated memory is still 130.0MB. Free memory was 96.9MB in the beginning and 96.8MB in the end (delta: 28.1kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 425.20ms. Allocated memory is still 130.0MB. Free memory was 99.3MB in the beginning and 78.0MB in the end (delta: 21.3MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 53.26ms. Allocated memory is still 130.0MB. Free memory was 78.0MB in the beginning and 75.5MB in the end (delta: 2.5MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 51.42ms. Allocated memory is still 130.0MB. Free memory was 75.5MB in the beginning and 73.4MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 392.31ms. Allocated memory is still 130.0MB. Free memory was 73.4MB in the beginning and 55.5MB in the end (delta: 17.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * TraceAbstraction took 6652.09ms. Allocated memory was 130.0MB in the beginning and 262.1MB in the end (delta: 132.1MB). Free memory was 55.0MB in the beginning and 211.5MB in the end (delta: -156.5MB). Peak memory consumption was 89.3MB. Max. memory is 16.1GB. * Witness Printer took 112.29ms. Allocated memory is still 262.1MB. Free memory was 211.5MB in the beginning and 204.1MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] - GenericResultAtLocation [Line: 415]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [415] - GenericResultAtLocation [Line: 521]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [521] - GenericResultAtLocation [Line: 589]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [589] - GenericResultAtLocation [Line: 786]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [786] - GenericResultAtLocation [Line: 881]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [881] - GenericResultAtLocation [Line: 931]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [931] - GenericResultAtLocation [Line: 966]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [966] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 971]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 7 procedures, 88 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 3.6s, OverallIterations: 11, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 1.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1051 SdHoareTripleChecker+Valid, 0.6s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1034 mSDsluCounter, 4345 SdHoareTripleChecker+Invalid, 0.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3147 mSDsCounter, 145 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 650 IncrementalHoareTripleChecker+Invalid, 795 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 145 mSolverCounterUnsat, 1198 mSDtfsCounter, 650 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 255 GetRequests, 190 SyntacticMatches, 4 SemanticMatches, 61 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 167 ImplicationChecksByTransitivity, 0.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=931occurred in iteration=9, InterpolantAutomatonStates: 70, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.3s AutomataMinimizationTime, 11 MinimizatonAttempts, 149 StatesRemovedByMinimization, 4 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 1.3s InterpolantComputationTime, 730 NumberOfCodeBlocks, 730 NumberOfCodeBlocksAsserted, 12 NumberOfCheckSat, 802 ConstructedInterpolants, 0 QuantifiedInterpolants, 1354 SizeOfPredicates, 2 NumberOfNonLiveVariables, 294 ConjunctsInSsa, 8 ConjunctsInUnsatCore, 13 InterpolantComputations, 10 PerfectInterpolantSequences, 270/289 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 428]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 533]: Loop Invariant Derived loop invariant: ((((((((1 == systemActive) && (splverifierCounter == 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || (((pumpRunning == 0) && (splverifierCounter == 0)) && (0 == systemActive))) || ((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1))) - InvariantResult [Line: 532]: Location Invariant Derived location invariant: 0 - ProcedureContractResult [Line: 629]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: ((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) && (((((((head == \old(head)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 814]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: ((((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive))) && ((((((head == \old(head)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 602]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: (((((((((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || ((pumpRunning == 0) && (waterLevel == 1))) && (((1 <= switchedOnBeforeTS) && (pumpRunning == 1)) || (\old(pumpRunning) != 1))) && ((0 != systemActive) || ((pumpRunning == 0) && ((\old(waterLevel) == waterLevel) || (waterLevel == 1))))) && (((\old(pumpRunning) != 1) || (\old(waterLevel) != 2)) || (waterLevel == 1))) && ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (2 == waterLevel))) || (\old(waterLevel) != 2)) || ((2 == waterLevel) && (pumpRunning == 1)))) && (((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (\old(waterLevel) == 2)) || (((\old(waterLevel) == 1) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || (((1 == systemActive) && (\old(pumpRunning) == 1)) && (1 <= \old(switchedOnBeforeTS)))) || ((\old(pumpRunning) == 0) && (0 == systemActive))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (\old(waterLevel) == 2)))) && ((((head == \old(head)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 418]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((head == \old(head)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical)))) - ProcedureContractResult [Line: 802]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: (((((2 == waterLevel) || (\old(waterLevel) != 2)) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && (((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 2))) || (((pumpRunning == 0) && (\old(waterLevel) == 1)) && (1 == systemActive))) || (((1 == systemActive) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || ((pumpRunning == 0) && (0 == systemActive)))) && ((((((head == \old(head)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 707]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: (((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: (((((pumpRunning != 0) || (\result == 0)) && (((((((1 == systemActive) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((2 == waterLevel) && (1 == systemActive)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((pumpRunning == 0) && (0 == systemActive)))) && ((\result == 1) || (pumpRunning != 1))) && (((((((head == \old(head)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) RESULT: Ultimate proved your program to be correct! [2024-11-18 14:21:54,069 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE