./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 3061b6dc Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 12ff1c3352fe657a44d5503b0c0550124efd9c84e66a259e2d68c9ba31095791 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-3061b6d-m [2024-11-18 14:22:13,705 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-18 14:22:13,743 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-18 14:22:13,747 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-18 14:22:13,747 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-18 14:22:13,773 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-18 14:22:13,773 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-18 14:22:13,774 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-18 14:22:13,774 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-18 14:22:13,776 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-18 14:22:13,776 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-18 14:22:13,776 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-18 14:22:13,777 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-18 14:22:13,778 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-18 14:22:13,779 INFO L153 SettingsManager]: * Use SBE=true [2024-11-18 14:22:13,804 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-18 14:22:13,804 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-18 14:22:13,804 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-18 14:22:13,805 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-18 14:22:13,805 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-18 14:22:13,805 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-18 14:22:13,807 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-18 14:22:13,808 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-18 14:22:13,808 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-18 14:22:13,808 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-18 14:22:13,808 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-18 14:22:13,808 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-18 14:22:13,808 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-18 14:22:13,808 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-18 14:22:13,809 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-18 14:22:13,809 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-18 14:22:13,809 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-18 14:22:13,809 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:22:13,809 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-18 14:22:13,809 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-18 14:22:13,809 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-18 14:22:13,810 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-18 14:22:13,810 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-18 14:22:13,810 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-18 14:22:13,810 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-18 14:22:13,810 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-18 14:22:13,814 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-18 14:22:13,814 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 12ff1c3352fe657a44d5503b0c0550124efd9c84e66a259e2d68c9ba31095791 [2024-11-18 14:22:14,037 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-18 14:22:14,073 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-18 14:22:14,075 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-18 14:22:14,076 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-18 14:22:14,076 INFO L274 PluginConnector]: CDTParser initialized [2024-11-18 14:22:14,077 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c [2024-11-18 14:22:15,551 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-18 14:22:15,768 INFO L384 CDTParser]: Found 1 translation units. [2024-11-18 14:22:15,769 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c [2024-11-18 14:22:15,797 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/b101f09b6/fbc03b410987413397ed6fd29ea21748/FLAGa4011dcc4 [2024-11-18 14:22:15,821 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/b101f09b6/fbc03b410987413397ed6fd29ea21748 [2024-11-18 14:22:15,823 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-18 14:22:15,828 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-18 14:22:15,829 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-18 14:22:15,829 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-18 14:22:15,838 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-18 14:22:15,841 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:22:15" (1/1) ... [2024-11-18 14:22:15,842 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@1f966a38 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:15, skipping insertion in model container [2024-11-18 14:22:15,842 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:22:15" (1/1) ... [2024-11-18 14:22:15,907 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-18 14:22:16,298 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c[18376,18389] [2024-11-18 14:22:16,309 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:22:16,323 INFO L200 MainTranslator]: Completed pre-run [2024-11-18 14:22:16,330 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [49] [2024-11-18 14:22:16,332 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [118] [2024-11-18 14:22:16,332 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [372] [2024-11-18 14:22:16,332 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [476] [2024-11-18 14:22:16,332 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [842] [2024-11-18 14:22:16,333 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [892] [2024-11-18 14:22:16,333 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [930] [2024-11-18 14:22:16,333 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [939] [2024-11-18 14:22:16,387 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product61.cil.c[18376,18389] [2024-11-18 14:22:16,389 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:22:16,404 INFO L204 MainTranslator]: Completed translation [2024-11-18 14:22:16,404 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16 WrapperNode [2024-11-18 14:22:16,404 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-18 14:22:16,405 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-18 14:22:16,405 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-18 14:22:16,406 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-18 14:22:16,410 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,422 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,443 INFO L138 Inliner]: procedures = 59, calls = 107, calls flagged for inlining = 25, calls inlined = 22, statements flattened = 241 [2024-11-18 14:22:16,449 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-18 14:22:16,449 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-18 14:22:16,449 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-18 14:22:16,450 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-18 14:22:16,459 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,459 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,464 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,501 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-18 14:22:16,501 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,501 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,514 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,529 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,530 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,531 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,532 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-18 14:22:16,539 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-18 14:22:16,540 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-18 14:22:16,540 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-18 14:22:16,541 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (1/1) ... [2024-11-18 14:22:16,553 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:22:16,562 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:16,577 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-18 14:22:16,580 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-18 14:22:16,612 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-18 14:22:16,612 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-18 14:22:16,613 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-18 14:22:16,613 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-18 14:22:16,613 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-18 14:22:16,613 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-18 14:22:16,613 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-18 14:22:16,613 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:16,613 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:16,613 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-18 14:22:16,613 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-18 14:22:16,613 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-18 14:22:16,613 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-18 14:22:16,614 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-18 14:22:16,614 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-18 14:22:16,614 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-18 14:22:16,614 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-18 14:22:16,614 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-18 14:22:16,614 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-18 14:22:16,614 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-18 14:22:16,614 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-18 14:22:16,614 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-18 14:22:16,614 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-18 14:22:16,615 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-18 14:22:16,702 INFO L238 CfgBuilder]: Building ICFG [2024-11-18 14:22:16,704 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-18 14:22:16,982 INFO L? ?]: Removed 52 outVars from TransFormulas that were not future-live. [2024-11-18 14:22:16,982 INFO L287 CfgBuilder]: Performing block encoding [2024-11-18 14:22:17,001 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-18 14:22:17,002 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-18 14:22:17,003 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:22:17 BoogieIcfgContainer [2024-11-18 14:22:17,003 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-18 14:22:17,005 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-18 14:22:17,006 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-18 14:22:17,009 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-18 14:22:17,009 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 18.11 02:22:15" (1/3) ... [2024-11-18 14:22:17,010 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1010ca55 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:22:17, skipping insertion in model container [2024-11-18 14:22:17,010 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:16" (2/3) ... [2024-11-18 14:22:17,011 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1010ca55 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:22:17, skipping insertion in model container [2024-11-18 14:22:17,011 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:22:17" (3/3) ... [2024-11-18 14:22:17,012 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product61.cil.c [2024-11-18 14:22:17,024 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-18 14:22:17,025 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-18 14:22:17,075 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-18 14:22:17,080 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@37736ae7, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-18 14:22:17,080 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-18 14:22:17,085 INFO L276 IsEmpty]: Start isEmpty. Operand has 113 states, 83 states have (on average 1.3614457831325302) internal successors, (113), 93 states have internal predecessors, (113), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-18 14:22:17,092 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-18 14:22:17,093 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:17,093 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:17,094 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:17,097 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:17,098 INFO L85 PathProgramCache]: Analyzing trace with hash -1729313638, now seen corresponding path program 1 times [2024-11-18 14:22:17,105 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:17,105 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1554880703] [2024-11-18 14:22:17,106 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:17,106 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:17,187 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:17,237 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:17,237 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:17,238 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1554880703] [2024-11-18 14:22:17,238 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1554880703] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:17,238 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:17,238 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-18 14:22:17,240 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [915100453] [2024-11-18 14:22:17,240 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:17,243 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-18 14:22:17,243 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:17,264 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-18 14:22:17,264 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:22:17,299 INFO L87 Difference]: Start difference. First operand has 113 states, 83 states have (on average 1.3614457831325302) internal successors, (113), 93 states have internal predecessors, (113), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:22:17,367 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:17,369 INFO L93 Difference]: Finished difference Result 217 states and 292 transitions. [2024-11-18 14:22:17,370 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-18 14:22:17,374 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 32 [2024-11-18 14:22:17,375 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:17,382 INFO L225 Difference]: With dead ends: 217 [2024-11-18 14:22:17,382 INFO L226 Difference]: Without dead ends: 104 [2024-11-18 14:22:17,386 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:22:17,388 INFO L432 NwaCegarLoop]: 143 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 143 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:17,389 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 143 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:17,402 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 104 states. [2024-11-18 14:22:17,418 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 104 to 104. [2024-11-18 14:22:17,420 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 104 states, 76 states have (on average 1.3026315789473684) internal successors, (99), 85 states have internal predecessors, (99), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2024-11-18 14:22:17,421 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 104 states to 104 states and 134 transitions. [2024-11-18 14:22:17,427 INFO L78 Accepts]: Start accepts. Automaton has 104 states and 134 transitions. Word has length 32 [2024-11-18 14:22:17,428 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:17,428 INFO L471 AbstractCegarLoop]: Abstraction has 104 states and 134 transitions. [2024-11-18 14:22:17,428 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:22:17,428 INFO L276 IsEmpty]: Start isEmpty. Operand 104 states and 134 transitions. [2024-11-18 14:22:17,430 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2024-11-18 14:22:17,430 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:17,431 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:17,431 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-18 14:22:17,431 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:17,432 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:17,432 INFO L85 PathProgramCache]: Analyzing trace with hash 79270819, now seen corresponding path program 1 times [2024-11-18 14:22:17,432 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:17,432 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [421701361] [2024-11-18 14:22:17,432 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:17,432 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:17,449 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:17,527 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:17,528 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:17,528 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [421701361] [2024-11-18 14:22:17,528 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [421701361] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:17,528 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:17,528 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:22:17,528 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1159212373] [2024-11-18 14:22:17,529 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:17,529 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:22:17,530 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:17,530 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:22:17,530 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:17,531 INFO L87 Difference]: Start difference. First operand 104 states and 134 transitions. Second operand has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:22:17,548 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:17,548 INFO L93 Difference]: Finished difference Result 173 states and 223 transitions. [2024-11-18 14:22:17,549 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:22:17,549 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 33 [2024-11-18 14:22:17,549 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:17,550 INFO L225 Difference]: With dead ends: 173 [2024-11-18 14:22:17,550 INFO L226 Difference]: Without dead ends: 95 [2024-11-18 14:22:17,551 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:17,552 INFO L432 NwaCegarLoop]: 121 mSDtfsCounter, 12 mSDsluCounter, 105 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 226 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:17,552 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 226 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:17,553 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 95 states. [2024-11-18 14:22:17,559 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 95 to 95. [2024-11-18 14:22:17,560 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 95 states, 70 states have (on average 1.3142857142857143) internal successors, (92), 79 states have internal predecessors, (92), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-18 14:22:17,561 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 95 states to 95 states and 122 transitions. [2024-11-18 14:22:17,561 INFO L78 Accepts]: Start accepts. Automaton has 95 states and 122 transitions. Word has length 33 [2024-11-18 14:22:17,561 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:17,561 INFO L471 AbstractCegarLoop]: Abstraction has 95 states and 122 transitions. [2024-11-18 14:22:17,562 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.333333333333334) internal successors, (25), 3 states have internal predecessors, (25), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:22:17,562 INFO L276 IsEmpty]: Start isEmpty. Operand 95 states and 122 transitions. [2024-11-18 14:22:17,563 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2024-11-18 14:22:17,563 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:17,563 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:17,563 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-18 14:22:17,563 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:17,564 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:17,564 INFO L85 PathProgramCache]: Analyzing trace with hash 1908446694, now seen corresponding path program 1 times [2024-11-18 14:22:17,564 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:17,564 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [118403001] [2024-11-18 14:22:17,564 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:17,564 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:17,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:17,689 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:17,693 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:17,693 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [118403001] [2024-11-18 14:22:17,693 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [118403001] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:17,693 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:17,693 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:22:17,693 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [964586314] [2024-11-18 14:22:17,693 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:17,694 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:22:17,694 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:17,694 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:22:17,694 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:22:17,694 INFO L87 Difference]: Start difference. First operand 95 states and 122 transitions. Second operand has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:22:17,802 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:17,802 INFO L93 Difference]: Finished difference Result 182 states and 237 transitions. [2024-11-18 14:22:17,805 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:22:17,805 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 37 [2024-11-18 14:22:17,806 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:17,807 INFO L225 Difference]: With dead ends: 182 [2024-11-18 14:22:17,807 INFO L226 Difference]: Without dead ends: 95 [2024-11-18 14:22:17,808 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56 [2024-11-18 14:22:17,812 INFO L432 NwaCegarLoop]: 118 mSDtfsCounter, 118 mSDsluCounter, 172 mSDsCounter, 0 mSdLazyCounter, 71 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 118 SdHoareTripleChecker+Valid, 290 SdHoareTripleChecker+Invalid, 71 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 71 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:17,813 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [118 Valid, 290 Invalid, 71 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 71 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:22:17,814 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 95 states. [2024-11-18 14:22:17,827 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 95 to 95. [2024-11-18 14:22:17,828 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 95 states, 70 states have (on average 1.3) internal successors, (91), 79 states have internal predecessors, (91), 15 states have call successors, (15), 9 states have call predecessors, (15), 9 states have return successors, (15), 10 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-18 14:22:17,828 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 95 states to 95 states and 121 transitions. [2024-11-18 14:22:17,829 INFO L78 Accepts]: Start accepts. Automaton has 95 states and 121 transitions. Word has length 37 [2024-11-18 14:22:17,831 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:17,831 INFO L471 AbstractCegarLoop]: Abstraction has 95 states and 121 transitions. [2024-11-18 14:22:17,831 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 5.0) internal successors, (30), 6 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:22:17,831 INFO L276 IsEmpty]: Start isEmpty. Operand 95 states and 121 transitions. [2024-11-18 14:22:17,833 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2024-11-18 14:22:17,836 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:17,836 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:17,836 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-18 14:22:17,836 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:17,837 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:17,837 INFO L85 PathProgramCache]: Analyzing trace with hash 366477468, now seen corresponding path program 1 times [2024-11-18 14:22:17,837 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:17,837 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [14694750] [2024-11-18 14:22:17,837 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:17,837 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:17,867 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:17,918 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:17,918 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:17,918 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [14694750] [2024-11-18 14:22:17,918 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [14694750] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:17,918 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:17,919 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:22:17,919 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [241100481] [2024-11-18 14:22:17,919 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:17,919 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:22:17,920 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:17,921 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:22:17,921 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:17,921 INFO L87 Difference]: Start difference. First operand 95 states and 121 transitions. Second operand has 3 states, 3 states have (on average 13.0) internal successors, (39), 3 states have internal predecessors, (39), 2 states have call successors, (5), 1 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-18 14:22:17,958 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:17,958 INFO L93 Difference]: Finished difference Result 238 states and 310 transitions. [2024-11-18 14:22:17,958 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:22:17,958 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 13.0) internal successors, (39), 3 states have internal predecessors, (39), 2 states have call successors, (5), 1 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 50 [2024-11-18 14:22:17,959 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:17,960 INFO L225 Difference]: With dead ends: 238 [2024-11-18 14:22:17,960 INFO L226 Difference]: Without dead ends: 151 [2024-11-18 14:22:17,961 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:17,962 INFO L432 NwaCegarLoop]: 125 mSDtfsCounter, 91 mSDsluCounter, 82 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 91 SdHoareTripleChecker+Valid, 207 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:17,962 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [91 Valid, 207 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:17,963 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 151 states. [2024-11-18 14:22:17,975 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 151 to 149. [2024-11-18 14:22:17,975 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 149 states, 111 states have (on average 1.2702702702702702) internal successors, (141), 120 states have internal predecessors, (141), 20 states have call successors, (20), 17 states have call predecessors, (20), 17 states have return successors, (26), 18 states have call predecessors, (26), 20 states have call successors, (26) [2024-11-18 14:22:17,976 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 149 states to 149 states and 187 transitions. [2024-11-18 14:22:17,977 INFO L78 Accepts]: Start accepts. Automaton has 149 states and 187 transitions. Word has length 50 [2024-11-18 14:22:17,977 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:17,977 INFO L471 AbstractCegarLoop]: Abstraction has 149 states and 187 transitions. [2024-11-18 14:22:17,977 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 13.0) internal successors, (39), 3 states have internal predecessors, (39), 2 states have call successors, (5), 1 states have call predecessors, (5), 1 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-18 14:22:17,977 INFO L276 IsEmpty]: Start isEmpty. Operand 149 states and 187 transitions. [2024-11-18 14:22:17,978 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 59 [2024-11-18 14:22:17,979 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:17,979 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:17,979 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-18 14:22:17,979 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:17,980 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:17,983 INFO L85 PathProgramCache]: Analyzing trace with hash -1653642302, now seen corresponding path program 1 times [2024-11-18 14:22:17,983 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:17,984 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [282572638] [2024-11-18 14:22:17,984 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:17,984 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:18,013 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:18,120 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:18,121 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:18,121 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [282572638] [2024-11-18 14:22:18,121 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [282572638] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:18,121 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:18,121 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:22:18,121 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [537854485] [2024-11-18 14:22:18,122 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:18,122 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:22:18,122 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:18,123 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:22:18,123 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:18,123 INFO L87 Difference]: Start difference. First operand 149 states and 187 transitions. Second operand has 4 states, 4 states have (on average 11.25) internal successors, (45), 4 states have internal predecessors, (45), 4 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2024-11-18 14:22:18,247 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:18,247 INFO L93 Difference]: Finished difference Result 539 states and 712 transitions. [2024-11-18 14:22:18,248 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:22:18,248 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 11.25) internal successors, (45), 4 states have internal predecessors, (45), 4 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) Word has length 58 [2024-11-18 14:22:18,249 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:18,252 INFO L225 Difference]: With dead ends: 539 [2024-11-18 14:22:18,256 INFO L226 Difference]: Without dead ends: 398 [2024-11-18 14:22:18,258 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:18,282 INFO L432 NwaCegarLoop]: 223 mSDtfsCounter, 167 mSDsluCounter, 201 mSDsCounter, 0 mSdLazyCounter, 81 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 167 SdHoareTripleChecker+Valid, 424 SdHoareTripleChecker+Invalid, 88 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 81 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:18,282 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [167 Valid, 424 Invalid, 88 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 81 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:22:18,283 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 398 states. [2024-11-18 14:22:18,312 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 398 to 389. [2024-11-18 14:22:18,313 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 389 states, 290 states have (on average 1.2655172413793103) internal successors, (367), 310 states have internal predecessors, (367), 52 states have call successors, (52), 44 states have call predecessors, (52), 46 states have return successors, (86), 50 states have call predecessors, (86), 52 states have call successors, (86) [2024-11-18 14:22:18,315 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 389 states to 389 states and 505 transitions. [2024-11-18 14:22:18,316 INFO L78 Accepts]: Start accepts. Automaton has 389 states and 505 transitions. Word has length 58 [2024-11-18 14:22:18,316 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:18,316 INFO L471 AbstractCegarLoop]: Abstraction has 389 states and 505 transitions. [2024-11-18 14:22:18,316 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 11.25) internal successors, (45), 4 states have internal predecessors, (45), 4 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2024-11-18 14:22:18,317 INFO L276 IsEmpty]: Start isEmpty. Operand 389 states and 505 transitions. [2024-11-18 14:22:18,326 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 59 [2024-11-18 14:22:18,326 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:18,327 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:18,327 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-18 14:22:18,327 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:18,328 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:18,328 INFO L85 PathProgramCache]: Analyzing trace with hash -1794190912, now seen corresponding path program 1 times [2024-11-18 14:22:18,328 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:18,328 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2032459650] [2024-11-18 14:22:18,328 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:18,328 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:18,354 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:18,492 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-18 14:22:18,494 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:18,494 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2032459650] [2024-11-18 14:22:18,494 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2032459650] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:18,494 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:18,494 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-18 14:22:18,494 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1496709107] [2024-11-18 14:22:18,495 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:18,495 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-18 14:22:18,496 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:18,497 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-18 14:22:18,497 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=31, Unknown=0, NotChecked=0, Total=42 [2024-11-18 14:22:18,497 INFO L87 Difference]: Start difference. First operand 389 states and 505 transitions. Second operand has 7 states, 7 states have (on average 6.714285714285714) internal successors, (47), 6 states have internal predecessors, (47), 3 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-18 14:22:18,781 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:18,781 INFO L93 Difference]: Finished difference Result 823 states and 1081 transitions. [2024-11-18 14:22:18,781 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:22:18,781 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 6.714285714285714) internal successors, (47), 6 states have internal predecessors, (47), 3 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) Word has length 58 [2024-11-18 14:22:18,782 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:18,784 INFO L225 Difference]: With dead ends: 823 [2024-11-18 14:22:18,784 INFO L226 Difference]: Without dead ends: 442 [2024-11-18 14:22:18,785 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 6 SyntacticMatches, 0 SemanticMatches, 12 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 18 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=48, Invalid=134, Unknown=0, NotChecked=0, Total=182 [2024-11-18 14:22:18,786 INFO L432 NwaCegarLoop]: 94 mSDtfsCounter, 154 mSDsluCounter, 368 mSDsCounter, 0 mSdLazyCounter, 230 mSolverCounterSat, 44 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 161 SdHoareTripleChecker+Valid, 462 SdHoareTripleChecker+Invalid, 274 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 44 IncrementalHoareTripleChecker+Valid, 230 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:18,786 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [161 Valid, 462 Invalid, 274 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [44 Valid, 230 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:22:18,787 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 442 states. [2024-11-18 14:22:18,824 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 442 to 440. [2024-11-18 14:22:18,825 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 440 states, 327 states have (on average 1.2415902140672783) internal successors, (406), 347 states have internal predecessors, (406), 56 states have call successors, (56), 44 states have call predecessors, (56), 56 states have return successors, (106), 62 states have call predecessors, (106), 56 states have call successors, (106) [2024-11-18 14:22:18,832 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 440 states to 440 states and 568 transitions. [2024-11-18 14:22:18,836 INFO L78 Accepts]: Start accepts. Automaton has 440 states and 568 transitions. Word has length 58 [2024-11-18 14:22:18,836 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:18,836 INFO L471 AbstractCegarLoop]: Abstraction has 440 states and 568 transitions. [2024-11-18 14:22:18,837 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 6.714285714285714) internal successors, (47), 6 states have internal predecessors, (47), 3 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 4 states have call predecessors, (5), 3 states have call successors, (5) [2024-11-18 14:22:18,840 INFO L276 IsEmpty]: Start isEmpty. Operand 440 states and 568 transitions. [2024-11-18 14:22:18,842 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-11-18 14:22:18,846 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:18,846 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:18,847 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-18 14:22:18,847 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:18,848 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:18,849 INFO L85 PathProgramCache]: Analyzing trace with hash 2009941831, now seen corresponding path program 1 times [2024-11-18 14:22:18,849 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:18,849 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1009728307] [2024-11-18 14:22:18,849 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:18,849 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:18,875 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:18,951 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:18,951 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:18,952 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1009728307] [2024-11-18 14:22:18,952 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1009728307] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:18,952 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:18,952 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:22:18,952 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [713863723] [2024-11-18 14:22:18,952 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:18,952 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:22:18,953 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:18,953 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:22:18,953 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:22:18,953 INFO L87 Difference]: Start difference. First operand 440 states and 568 transitions. Second operand has 5 states, 5 states have (on average 10.2) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:18,999 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:19,001 INFO L93 Difference]: Finished difference Result 881 states and 1188 transitions. [2024-11-18 14:22:19,001 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:22:19,001 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 10.2) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 64 [2024-11-18 14:22:19,003 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:19,006 INFO L225 Difference]: With dead ends: 881 [2024-11-18 14:22:19,007 INFO L226 Difference]: Without dead ends: 449 [2024-11-18 14:22:19,009 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:22:19,011 INFO L432 NwaCegarLoop]: 118 mSDtfsCounter, 0 mSDsluCounter, 348 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 466 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:19,012 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 466 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:19,014 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 449 states. [2024-11-18 14:22:19,056 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 449 to 449. [2024-11-18 14:22:19,057 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 449 states, 336 states have (on average 1.2351190476190477) internal successors, (415), 356 states have internal predecessors, (415), 56 states have call successors, (56), 44 states have call predecessors, (56), 56 states have return successors, (106), 62 states have call predecessors, (106), 56 states have call successors, (106) [2024-11-18 14:22:19,060 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 449 states to 449 states and 577 transitions. [2024-11-18 14:22:19,060 INFO L78 Accepts]: Start accepts. Automaton has 449 states and 577 transitions. Word has length 64 [2024-11-18 14:22:19,060 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:19,061 INFO L471 AbstractCegarLoop]: Abstraction has 449 states and 577 transitions. [2024-11-18 14:22:19,061 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 10.2) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:19,061 INFO L276 IsEmpty]: Start isEmpty. Operand 449 states and 577 transitions. [2024-11-18 14:22:19,062 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-11-18 14:22:19,062 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:19,063 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:19,063 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-18 14:22:19,063 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:19,063 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:19,064 INFO L85 PathProgramCache]: Analyzing trace with hash -898822071, now seen corresponding path program 1 times [2024-11-18 14:22:19,064 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:19,064 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [364864127] [2024-11-18 14:22:19,064 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:19,065 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:19,077 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:19,160 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:19,160 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:19,161 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [364864127] [2024-11-18 14:22:19,161 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [364864127] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:19,161 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:19,161 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:22:19,163 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1895414657] [2024-11-18 14:22:19,163 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:19,163 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:22:19,164 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:19,164 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:22:19,164 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:22:19,164 INFO L87 Difference]: Start difference. First operand 449 states and 577 transitions. Second operand has 6 states, 6 states have (on average 8.5) internal successors, (51), 6 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:19,205 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:19,205 INFO L93 Difference]: Finished difference Result 811 states and 1073 transitions. [2024-11-18 14:22:19,205 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-18 14:22:19,206 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 8.5) internal successors, (51), 6 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 64 [2024-11-18 14:22:19,206 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:19,208 INFO L225 Difference]: With dead ends: 811 [2024-11-18 14:22:19,208 INFO L226 Difference]: Without dead ends: 370 [2024-11-18 14:22:19,209 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:22:19,210 INFO L432 NwaCegarLoop]: 117 mSDtfsCounter, 0 mSDsluCounter, 460 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 577 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:19,210 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 577 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:19,211 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 370 states. [2024-11-18 14:22:19,234 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 370 to 370. [2024-11-18 14:22:19,234 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 370 states, 275 states have (on average 1.221818181818182) internal successors, (336), 291 states have internal predecessors, (336), 48 states have call successors, (48), 38 states have call predecessors, (48), 46 states have return successors, (83), 51 states have call predecessors, (83), 48 states have call successors, (83) [2024-11-18 14:22:19,236 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 370 states to 370 states and 467 transitions. [2024-11-18 14:22:19,237 INFO L78 Accepts]: Start accepts. Automaton has 370 states and 467 transitions. Word has length 64 [2024-11-18 14:22:19,237 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:19,237 INFO L471 AbstractCegarLoop]: Abstraction has 370 states and 467 transitions. [2024-11-18 14:22:19,237 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 8.5) internal successors, (51), 6 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:19,237 INFO L276 IsEmpty]: Start isEmpty. Operand 370 states and 467 transitions. [2024-11-18 14:22:19,238 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-11-18 14:22:19,238 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:19,238 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:19,239 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-18 14:22:19,239 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:19,239 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:19,239 INFO L85 PathProgramCache]: Analyzing trace with hash -767563483, now seen corresponding path program 1 times [2024-11-18 14:22:19,239 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:19,240 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2146683660] [2024-11-18 14:22:19,240 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:19,240 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:19,252 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:19,401 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:19,401 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:19,401 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2146683660] [2024-11-18 14:22:19,401 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2146683660] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:19,401 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:19,401 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-18 14:22:19,402 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1843339512] [2024-11-18 14:22:19,402 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:19,402 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-18 14:22:19,402 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:19,403 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-18 14:22:19,403 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=41, Unknown=0, NotChecked=0, Total=56 [2024-11-18 14:22:19,403 INFO L87 Difference]: Start difference. First operand 370 states and 467 transitions. Second operand has 8 states, 8 states have (on average 6.625) internal successors, (53), 7 states have internal predecessors, (53), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-18 14:22:19,802 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:19,803 INFO L93 Difference]: Finished difference Result 1037 states and 1363 transitions. [2024-11-18 14:22:19,803 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:22:19,803 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 6.625) internal successors, (53), 7 states have internal predecessors, (53), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) Word has length 68 [2024-11-18 14:22:19,804 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:19,807 INFO L225 Difference]: With dead ends: 1037 [2024-11-18 14:22:19,808 INFO L226 Difference]: Without dead ends: 730 [2024-11-18 14:22:19,809 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=47, Invalid=109, Unknown=0, NotChecked=0, Total=156 [2024-11-18 14:22:19,810 INFO L432 NwaCegarLoop]: 140 mSDtfsCounter, 434 mSDsluCounter, 396 mSDsCounter, 0 mSdLazyCounter, 382 mSolverCounterSat, 114 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 444 SdHoareTripleChecker+Valid, 536 SdHoareTripleChecker+Invalid, 496 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 114 IncrementalHoareTripleChecker+Valid, 382 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:19,811 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [444 Valid, 536 Invalid, 496 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [114 Valid, 382 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-18 14:22:19,811 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 730 states. [2024-11-18 14:22:19,846 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 730 to 657. [2024-11-18 14:22:19,847 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 657 states, 486 states have (on average 1.2098765432098766) internal successors, (588), 517 states have internal predecessors, (588), 86 states have call successors, (86), 66 states have call predecessors, (86), 84 states have return successors, (147), 91 states have call predecessors, (147), 86 states have call successors, (147) [2024-11-18 14:22:19,849 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 657 states to 657 states and 821 transitions. [2024-11-18 14:22:19,850 INFO L78 Accepts]: Start accepts. Automaton has 657 states and 821 transitions. Word has length 68 [2024-11-18 14:22:19,851 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:19,851 INFO L471 AbstractCegarLoop]: Abstraction has 657 states and 821 transitions. [2024-11-18 14:22:19,851 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 6.625) internal successors, (53), 7 states have internal predecessors, (53), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-18 14:22:19,851 INFO L276 IsEmpty]: Start isEmpty. Operand 657 states and 821 transitions. [2024-11-18 14:22:19,852 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-18 14:22:19,852 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:19,852 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:19,852 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-18 14:22:19,853 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:19,853 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:19,853 INFO L85 PathProgramCache]: Analyzing trace with hash -1564090535, now seen corresponding path program 1 times [2024-11-18 14:22:19,853 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:19,853 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1807075397] [2024-11-18 14:22:19,853 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:19,853 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:19,878 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:20,011 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 18 proven. 10 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-18 14:22:20,012 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:20,012 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1807075397] [2024-11-18 14:22:20,013 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1807075397] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:20,013 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [86250306] [2024-11-18 14:22:20,013 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:20,014 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:20,014 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:20,017 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:20,019 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-18 14:22:20,102 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:20,104 INFO L255 TraceCheckSpWp]: Trace formula consists of 381 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-18 14:22:20,110 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:20,272 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 30 proven. 11 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-18 14:22:20,273 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:20,488 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 18 proven. 10 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-18 14:22:20,488 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [86250306] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:20,488 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:20,488 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 6, 6] total 14 [2024-11-18 14:22:20,489 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [532851096] [2024-11-18 14:22:20,489 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:20,489 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-11-18 14:22:20,489 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:20,490 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-11-18 14:22:20,490 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=34, Invalid=148, Unknown=0, NotChecked=0, Total=182 [2024-11-18 14:22:20,490 INFO L87 Difference]: Start difference. First operand 657 states and 821 transitions. Second operand has 14 states, 14 states have (on average 10.642857142857142) internal successors, (149), 12 states have internal predecessors, (149), 5 states have call successors, (24), 4 states have call predecessors, (24), 7 states have return successors, (25), 8 states have call predecessors, (25), 5 states have call successors, (25) [2024-11-18 14:22:21,041 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,041 INFO L93 Difference]: Finished difference Result 1437 states and 1865 transitions. [2024-11-18 14:22:21,045 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-11-18 14:22:21,046 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 14 states have (on average 10.642857142857142) internal successors, (149), 12 states have internal predecessors, (149), 5 states have call successors, (24), 4 states have call predecessors, (24), 7 states have return successors, (25), 8 states have call predecessors, (25), 5 states have call successors, (25) Word has length 121 [2024-11-18 14:22:21,046 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,051 INFO L225 Difference]: With dead ends: 1437 [2024-11-18 14:22:21,052 INFO L226 Difference]: Without dead ends: 841 [2024-11-18 14:22:21,055 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 265 GetRequests, 237 SyntacticMatches, 4 SemanticMatches, 24 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 115 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=133, Invalid=517, Unknown=0, NotChecked=0, Total=650 [2024-11-18 14:22:21,056 INFO L432 NwaCegarLoop]: 242 mSDtfsCounter, 169 mSDsluCounter, 1628 mSDsCounter, 0 mSdLazyCounter, 309 mSolverCounterSat, 36 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 176 SdHoareTripleChecker+Valid, 1870 SdHoareTripleChecker+Invalid, 345 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 36 IncrementalHoareTripleChecker+Valid, 309 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,056 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [176 Valid, 1870 Invalid, 345 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [36 Valid, 309 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-18 14:22:21,057 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 841 states. [2024-11-18 14:22:21,101 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 841 to 744. [2024-11-18 14:22:21,103 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 744 states, 546 states have (on average 1.2014652014652014) internal successors, (656), 586 states have internal predecessors, (656), 99 states have call successors, (99), 84 states have call predecessors, (99), 98 states have return successors, (143), 100 states have call predecessors, (143), 99 states have call successors, (143) [2024-11-18 14:22:21,105 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 744 states to 744 states and 898 transitions. [2024-11-18 14:22:21,106 INFO L78 Accepts]: Start accepts. Automaton has 744 states and 898 transitions. Word has length 121 [2024-11-18 14:22:21,106 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,106 INFO L471 AbstractCegarLoop]: Abstraction has 744 states and 898 transitions. [2024-11-18 14:22:21,107 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 14 states have (on average 10.642857142857142) internal successors, (149), 12 states have internal predecessors, (149), 5 states have call successors, (24), 4 states have call predecessors, (24), 7 states have return successors, (25), 8 states have call predecessors, (25), 5 states have call successors, (25) [2024-11-18 14:22:21,107 INFO L276 IsEmpty]: Start isEmpty. Operand 744 states and 898 transitions. [2024-11-18 14:22:21,109 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 216 [2024-11-18 14:22:21,109 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,110 INFO L215 NwaCegarLoop]: trace histogram [5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,125 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-18 14:22:21,313 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-18 14:22:21,314 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,314 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,314 INFO L85 PathProgramCache]: Analyzing trace with hash -121841121, now seen corresponding path program 1 times [2024-11-18 14:22:21,314 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,314 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1910081635] [2024-11-18 14:22:21,314 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,314 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,339 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,555 INFO L134 CoverageAnalysis]: Checked inductivity of 229 backedges. 92 proven. 35 refuted. 0 times theorem prover too weak. 102 trivial. 0 not checked. [2024-11-18 14:22:21,555 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,555 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1910081635] [2024-11-18 14:22:21,555 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1910081635] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:21,555 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1167735388] [2024-11-18 14:22:21,555 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,555 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:21,555 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:21,558 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:21,567 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-18 14:22:21,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,678 INFO L255 TraceCheckSpWp]: Trace formula consists of 610 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-18 14:22:21,688 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:21,859 INFO L134 CoverageAnalysis]: Checked inductivity of 229 backedges. 167 proven. 4 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2024-11-18 14:22:21,860 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:22,569 INFO L134 CoverageAnalysis]: Checked inductivity of 229 backedges. 78 proven. 42 refuted. 0 times theorem prover too weak. 109 trivial. 0 not checked. [2024-11-18 14:22:22,569 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1167735388] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:22,570 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:22,570 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 10, 11] total 25 [2024-11-18 14:22:22,570 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1533220122] [2024-11-18 14:22:22,570 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:22,572 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-18 14:22:22,572 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:22,573 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-18 14:22:22,573 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=102, Invalid=498, Unknown=0, NotChecked=0, Total=600 [2024-11-18 14:22:22,573 INFO L87 Difference]: Start difference. First operand 744 states and 898 transitions. Second operand has 25 states, 25 states have (on average 9.24) internal successors, (231), 22 states have internal predecessors, (231), 10 states have call successors, (39), 5 states have call predecessors, (39), 11 states have return successors, (45), 11 states have call predecessors, (45), 10 states have call successors, (45) [2024-11-18 14:22:24,525 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:24,525 INFO L93 Difference]: Finished difference Result 2207 states and 2831 transitions. [2024-11-18 14:22:24,526 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 44 states. [2024-11-18 14:22:24,526 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 25 states have (on average 9.24) internal successors, (231), 22 states have internal predecessors, (231), 10 states have call successors, (39), 5 states have call predecessors, (39), 11 states have return successors, (45), 11 states have call predecessors, (45), 10 states have call successors, (45) Word has length 215 [2024-11-18 14:22:24,526 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:24,532 INFO L225 Difference]: With dead ends: 2207 [2024-11-18 14:22:24,532 INFO L226 Difference]: Without dead ends: 1438 [2024-11-18 14:22:24,535 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 492 GetRequests, 424 SyntacticMatches, 3 SemanticMatches, 65 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 982 ImplicationChecksByTransitivity, 0.9s TimeCoverageRelationStatistics Valid=758, Invalid=3664, Unknown=0, NotChecked=0, Total=4422 [2024-11-18 14:22:24,536 INFO L432 NwaCegarLoop]: 103 mSDtfsCounter, 583 mSDsluCounter, 1033 mSDsCounter, 0 mSdLazyCounter, 2156 mSolverCounterSat, 273 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 583 SdHoareTripleChecker+Valid, 1136 SdHoareTripleChecker+Invalid, 2429 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 273 IncrementalHoareTripleChecker+Valid, 2156 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:24,536 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [583 Valid, 1136 Invalid, 2429 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [273 Valid, 2156 Invalid, 0 Unknown, 0 Unchecked, 1.2s Time] [2024-11-18 14:22:24,537 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1438 states. [2024-11-18 14:22:24,628 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1438 to 1335. [2024-11-18 14:22:24,630 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1335 states, 993 states have (on average 1.1409869083585096) internal successors, (1133), 1039 states have internal predecessors, (1133), 181 states have call successors, (181), 161 states have call predecessors, (181), 160 states have return successors, (225), 164 states have call predecessors, (225), 181 states have call successors, (225) [2024-11-18 14:22:24,634 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1335 states to 1335 states and 1539 transitions. [2024-11-18 14:22:24,635 INFO L78 Accepts]: Start accepts. Automaton has 1335 states and 1539 transitions. Word has length 215 [2024-11-18 14:22:24,636 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:24,636 INFO L471 AbstractCegarLoop]: Abstraction has 1335 states and 1539 transitions. [2024-11-18 14:22:24,636 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 25 states have (on average 9.24) internal successors, (231), 22 states have internal predecessors, (231), 10 states have call successors, (39), 5 states have call predecessors, (39), 11 states have return successors, (45), 11 states have call predecessors, (45), 10 states have call successors, (45) [2024-11-18 14:22:24,636 INFO L276 IsEmpty]: Start isEmpty. Operand 1335 states and 1539 transitions. [2024-11-18 14:22:24,640 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 236 [2024-11-18 14:22:24,640 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:24,640 INFO L215 NwaCegarLoop]: trace histogram [7, 7, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:24,655 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2024-11-18 14:22:24,843 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-18 14:22:24,844 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:24,844 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:24,844 INFO L85 PathProgramCache]: Analyzing trace with hash -1935629701, now seen corresponding path program 1 times [2024-11-18 14:22:24,844 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:24,844 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2131815421] [2024-11-18 14:22:24,845 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:24,845 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:24,869 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:25,260 INFO L134 CoverageAnalysis]: Checked inductivity of 275 backedges. 101 proven. 62 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2024-11-18 14:22:25,261 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:25,261 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2131815421] [2024-11-18 14:22:25,261 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2131815421] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:25,261 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1521016992] [2024-11-18 14:22:25,261 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:25,261 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:25,262 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:25,265 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:25,267 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-18 14:22:25,381 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:25,386 INFO L255 TraceCheckSpWp]: Trace formula consists of 661 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-11-18 14:22:25,392 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:25,531 INFO L134 CoverageAnalysis]: Checked inductivity of 275 backedges. 206 proven. 11 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2024-11-18 14:22:25,531 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:25,954 INFO L134 CoverageAnalysis]: Checked inductivity of 275 backedges. 101 proven. 62 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2024-11-18 14:22:25,954 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1521016992] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:25,954 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:25,954 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 8] total 22 [2024-11-18 14:22:25,955 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [527397740] [2024-11-18 14:22:25,955 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:25,955 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-11-18 14:22:25,955 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:25,956 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-11-18 14:22:25,956 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=73, Invalid=389, Unknown=0, NotChecked=0, Total=462 [2024-11-18 14:22:25,957 INFO L87 Difference]: Start difference. First operand 1335 states and 1539 transitions. Second operand has 22 states, 22 states have (on average 11.772727272727273) internal successors, (259), 19 states have internal predecessors, (259), 7 states have call successors, (46), 5 states have call predecessors, (46), 13 states have return successors, (50), 11 states have call predecessors, (50), 7 states have call successors, (50) [2024-11-18 14:22:26,551 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:26,552 INFO L93 Difference]: Finished difference Result 2616 states and 3044 transitions. [2024-11-18 14:22:26,552 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-11-18 14:22:26,552 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 22 states have (on average 11.772727272727273) internal successors, (259), 19 states have internal predecessors, (259), 7 states have call successors, (46), 5 states have call predecessors, (46), 13 states have return successors, (50), 11 states have call predecessors, (50), 7 states have call successors, (50) Word has length 235 [2024-11-18 14:22:26,553 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:26,559 INFO L225 Difference]: With dead ends: 2616 [2024-11-18 14:22:26,559 INFO L226 Difference]: Without dead ends: 1395 [2024-11-18 14:22:26,561 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 501 GetRequests, 466 SyntacticMatches, 1 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 169 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=225, Invalid=1035, Unknown=0, NotChecked=0, Total=1260 [2024-11-18 14:22:26,562 INFO L432 NwaCegarLoop]: 129 mSDtfsCounter, 262 mSDsluCounter, 1069 mSDsCounter, 0 mSdLazyCounter, 861 mSolverCounterSat, 99 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 266 SdHoareTripleChecker+Valid, 1198 SdHoareTripleChecker+Invalid, 960 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 99 IncrementalHoareTripleChecker+Valid, 861 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:26,562 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [266 Valid, 1198 Invalid, 960 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [99 Valid, 861 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-18 14:22:26,563 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1395 states. [2024-11-18 14:22:26,627 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1395 to 1365. [2024-11-18 14:22:26,628 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1365 states, 1013 states have (on average 1.134254689042448) internal successors, (1149), 1059 states have internal predecessors, (1149), 181 states have call successors, (181), 171 states have call predecessors, (181), 170 states have return successors, (225), 164 states have call predecessors, (225), 181 states have call successors, (225) [2024-11-18 14:22:26,631 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1365 states to 1365 states and 1555 transitions. [2024-11-18 14:22:26,633 INFO L78 Accepts]: Start accepts. Automaton has 1365 states and 1555 transitions. Word has length 235 [2024-11-18 14:22:26,633 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:26,633 INFO L471 AbstractCegarLoop]: Abstraction has 1365 states and 1555 transitions. [2024-11-18 14:22:26,634 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 22 states have (on average 11.772727272727273) internal successors, (259), 19 states have internal predecessors, (259), 7 states have call successors, (46), 5 states have call predecessors, (46), 13 states have return successors, (50), 11 states have call predecessors, (50), 7 states have call successors, (50) [2024-11-18 14:22:26,634 INFO L276 IsEmpty]: Start isEmpty. Operand 1365 states and 1555 transitions. [2024-11-18 14:22:26,637 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 237 [2024-11-18 14:22:26,637 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:26,638 INFO L215 NwaCegarLoop]: trace histogram [7, 7, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:26,651 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-18 14:22:26,842 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:26,843 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:26,844 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:26,844 INFO L85 PathProgramCache]: Analyzing trace with hash -357955358, now seen corresponding path program 1 times [2024-11-18 14:22:26,844 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:26,844 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2042410768] [2024-11-18 14:22:26,844 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:26,844 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:26,870 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:27,310 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 98 proven. 58 refuted. 0 times theorem prover too weak. 120 trivial. 0 not checked. [2024-11-18 14:22:27,311 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:27,311 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2042410768] [2024-11-18 14:22:27,311 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2042410768] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:27,311 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [114746438] [2024-11-18 14:22:27,311 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:27,311 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:27,312 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:27,313 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:27,316 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-18 14:22:27,422 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:27,426 INFO L255 TraceCheckSpWp]: Trace formula consists of 661 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-18 14:22:27,429 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:27,587 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 147 proven. 26 refuted. 0 times theorem prover too weak. 103 trivial. 0 not checked. [2024-11-18 14:22:27,587 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:28,095 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 103 proven. 45 refuted. 0 times theorem prover too weak. 128 trivial. 0 not checked. [2024-11-18 14:22:28,095 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [114746438] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:28,095 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:28,095 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 8, 13] total 21 [2024-11-18 14:22:28,095 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [850031681] [2024-11-18 14:22:28,095 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:28,096 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-11-18 14:22:28,096 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:28,097 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-11-18 14:22:28,097 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=108, Invalid=312, Unknown=0, NotChecked=0, Total=420 [2024-11-18 14:22:28,097 INFO L87 Difference]: Start difference. First operand 1365 states and 1555 transitions. Second operand has 21 states, 21 states have (on average 12.19047619047619) internal successors, (256), 20 states have internal predecessors, (256), 15 states have call successors, (50), 8 states have call predecessors, (50), 14 states have return successors, (50), 15 states have call predecessors, (50), 15 states have call successors, (50) [2024-11-18 14:22:28,843 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:28,843 INFO L93 Difference]: Finished difference Result 2638 states and 3069 transitions. [2024-11-18 14:22:28,844 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-18 14:22:28,844 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 21 states have (on average 12.19047619047619) internal successors, (256), 20 states have internal predecessors, (256), 15 states have call successors, (50), 8 states have call predecessors, (50), 14 states have return successors, (50), 15 states have call predecessors, (50), 15 states have call successors, (50) Word has length 236 [2024-11-18 14:22:28,845 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:28,851 INFO L225 Difference]: With dead ends: 2638 [2024-11-18 14:22:28,851 INFO L226 Difference]: Without dead ends: 1852 [2024-11-18 14:22:28,853 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 509 GetRequests, 466 SyntacticMatches, 8 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 289 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=389, Invalid=943, Unknown=0, NotChecked=0, Total=1332 [2024-11-18 14:22:28,854 INFO L432 NwaCegarLoop]: 155 mSDtfsCounter, 855 mSDsluCounter, 509 mSDsCounter, 0 mSdLazyCounter, 988 mSolverCounterSat, 371 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 858 SdHoareTripleChecker+Valid, 664 SdHoareTripleChecker+Invalid, 1359 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 371 IncrementalHoareTripleChecker+Valid, 988 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:28,854 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [858 Valid, 664 Invalid, 1359 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [371 Valid, 988 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-18 14:22:28,856 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1852 states. [2024-11-18 14:22:28,997 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1852 to 1696. [2024-11-18 14:22:29,000 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1696 states, 1260 states have (on average 1.1317460317460317) internal successors, (1426), 1310 states have internal predecessors, (1426), 227 states have call successors, (227), 214 states have call predecessors, (227), 208 states have return successors, (265), 207 states have call predecessors, (265), 227 states have call successors, (265) [2024-11-18 14:22:29,005 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1696 states to 1696 states and 1918 transitions. [2024-11-18 14:22:29,006 INFO L78 Accepts]: Start accepts. Automaton has 1696 states and 1918 transitions. Word has length 236 [2024-11-18 14:22:29,007 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:29,007 INFO L471 AbstractCegarLoop]: Abstraction has 1696 states and 1918 transitions. [2024-11-18 14:22:29,007 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 21 states have (on average 12.19047619047619) internal successors, (256), 20 states have internal predecessors, (256), 15 states have call successors, (50), 8 states have call predecessors, (50), 14 states have return successors, (50), 15 states have call predecessors, (50), 15 states have call successors, (50) [2024-11-18 14:22:29,007 INFO L276 IsEmpty]: Start isEmpty. Operand 1696 states and 1918 transitions. [2024-11-18 14:22:29,012 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 292 [2024-11-18 14:22:29,012 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:29,013 INFO L215 NwaCegarLoop]: trace histogram [9, 9, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:29,026 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-18 14:22:29,213 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:29,214 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:29,214 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:29,214 INFO L85 PathProgramCache]: Analyzing trace with hash 936739427, now seen corresponding path program 1 times [2024-11-18 14:22:29,214 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:29,214 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [393665310] [2024-11-18 14:22:29,214 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:29,214 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:29,249 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:29,448 INFO L134 CoverageAnalysis]: Checked inductivity of 469 backedges. 128 proven. 91 refuted. 0 times theorem prover too weak. 250 trivial. 0 not checked. [2024-11-18 14:22:29,448 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:29,449 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [393665310] [2024-11-18 14:22:29,449 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [393665310] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:29,449 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [784890678] [2024-11-18 14:22:29,449 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:29,449 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:29,449 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:29,450 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:29,454 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-18 14:22:29,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:29,587 INFO L255 TraceCheckSpWp]: Trace formula consists of 793 conjuncts, 30 conjuncts are in the unsatisfiable core [2024-11-18 14:22:29,591 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:29,832 INFO L134 CoverageAnalysis]: Checked inductivity of 469 backedges. 169 proven. 89 refuted. 0 times theorem prover too weak. 211 trivial. 0 not checked. [2024-11-18 14:22:29,832 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:30,457 INFO L134 CoverageAnalysis]: Checked inductivity of 469 backedges. 102 proven. 136 refuted. 0 times theorem prover too weak. 231 trivial. 0 not checked. [2024-11-18 14:22:30,457 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [784890678] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:30,458 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:30,458 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 11, 16] total 25 [2024-11-18 14:22:30,458 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1318235543] [2024-11-18 14:22:30,458 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:30,459 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-18 14:22:30,459 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:30,460 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-18 14:22:30,460 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=135, Invalid=465, Unknown=0, NotChecked=0, Total=600 [2024-11-18 14:22:30,460 INFO L87 Difference]: Start difference. First operand 1696 states and 1918 transitions. Second operand has 25 states, 25 states have (on average 12.48) internal successors, (312), 24 states have internal predecessors, (312), 17 states have call successors, (62), 10 states have call predecessors, (62), 17 states have return successors, (66), 17 states have call predecessors, (66), 17 states have call successors, (66) [2024-11-18 14:22:32,105 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:32,106 INFO L93 Difference]: Finished difference Result 5665 states and 7241 transitions. [2024-11-18 14:22:32,106 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 39 states. [2024-11-18 14:22:32,106 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 25 states have (on average 12.48) internal successors, (312), 24 states have internal predecessors, (312), 17 states have call successors, (62), 10 states have call predecessors, (62), 17 states have return successors, (66), 17 states have call predecessors, (66), 17 states have call successors, (66) Word has length 291 [2024-11-18 14:22:32,107 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:32,110 INFO L225 Difference]: With dead ends: 5665 [2024-11-18 14:22:32,110 INFO L226 Difference]: Without dead ends: 0 [2024-11-18 14:22:32,120 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 645 GetRequests, 581 SyntacticMatches, 10 SemanticMatches, 54 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 843 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=781, Invalid=2299, Unknown=0, NotChecked=0, Total=3080 [2024-11-18 14:22:32,121 INFO L432 NwaCegarLoop]: 207 mSDtfsCounter, 916 mSDsluCounter, 1677 mSDsCounter, 0 mSdLazyCounter, 1991 mSolverCounterSat, 393 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 923 SdHoareTripleChecker+Valid, 1884 SdHoareTripleChecker+Invalid, 2384 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 393 IncrementalHoareTripleChecker+Valid, 1991 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:32,121 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [923 Valid, 1884 Invalid, 2384 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [393 Valid, 1991 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-11-18 14:22:32,121 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-18 14:22:32,122 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-18 14:22:32,122 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-18 14:22:32,122 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-18 14:22:32,123 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 291 [2024-11-18 14:22:32,123 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:32,123 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-18 14:22:32,123 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 25 states have (on average 12.48) internal successors, (312), 24 states have internal predecessors, (312), 17 states have call successors, (62), 10 states have call predecessors, (62), 17 states have return successors, (66), 17 states have call predecessors, (66), 17 states have call successors, (66) [2024-11-18 14:22:32,124 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-18 14:22:32,124 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-18 14:22:32,126 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-18 14:22:32,139 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-11-18 14:22:32,330 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2024-11-18 14:22:32,333 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:32,336 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-18 14:22:59,475 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-18 14:22:59,492 WARN L156 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (= |old(~pumpRunning~0)| 1)) (.cse2 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse0 .cse1 (<= ~waterLevel~0 0) .cse2) (and .cse0 .cse1 (= ~waterLevel~0 1) .cse2))) (= ~pumpRunning~0 1)) Eliminated clause: (and (let ((.cse0 (= 1 ~systemActive~0)) (.cse1 (<= 1 ~switchedOnBeforeTS~0))) (or (and .cse0 (= ~waterLevel~0 1) .cse1) (and .cse0 (<= ~waterLevel~0 0) .cse1))) (= ~pumpRunning~0 1)) [2024-11-18 14:22:59,504 WARN L156 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse1 (= ~methaneLevelCritical~0 0))) (and (or .cse0 (not .cse1)) (let ((.cse2 (= ~pumpRunning~0 0))) (or (and .cse2 (= 2 ~waterLevel~0)) (and .cse0 (<= ~waterLevel~0 2) (= ~pumpRunning~0 1)) (and .cse2 (<= ~waterLevel~0 1)))) (= 1 ~systemActive~0) (or (not .cse0) .cse1))) Eliminated clause: (and (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse0 (= |old(~methaneLevelCritical~0)| 0)) (.cse1 (= ~methaneLevelCritical~0 0))) (and (or .cse0 (not .cse1)) (let ((.cse2 (= ~pumpRunning~0 0))) (or (and .cse2 (= 2 ~waterLevel~0)) (and .cse0 (<= ~waterLevel~0 2) (= ~pumpRunning~0 1)) (and .cse2 (<= ~waterLevel~0 1)))) (or (not .cse0) .cse1)))) (= 1 ~systemActive~0)) [2024-11-18 14:22:59,511 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:59,523 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse7 (= |old(~pumpRunning~0)| 0))) (let ((.cse5 (= |old(~pumpRunning~0)| 1)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (not .cse7)) (.cse0 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse1 (<= 1 ~switchedOnBeforeTS~0))) (and (or (not (= |old(~waterLevel~0)| 1)) .cse0 .cse1) (or (< 1 |old(~waterLevel~0)|) .cse0 (not (= ~methaneLevelCritical~0 0)) .cse1) (or .cse2 (and (= ~pumpRunning~0 0) .cse3)) (let ((.cse4 (= 1 ~systemActive~0)) (.cse6 (<= |old(~waterLevel~0)| 2))) (or (and .cse4 .cse5 .cse6) (and .cse4 .cse7 .cse6))) (or (not .cse5) (and .cse3 (= ~pumpRunning~0 1))) (or .cse2 .cse0 (< 0 |old(~waterLevel~0)|) .cse1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse7 (= |old(~pumpRunning~0)| 0))) (let ((.cse2 (not .cse7)) (.cse5 (= |old(~pumpRunning~0)| 1)) (.cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse0 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse1 (< 0 ~switchedOnBeforeTS~0))) (and (or (< 1 |old(~waterLevel~0)|) .cse0 .cse1 (not (= ~methaneLevelCritical~0 0))) (or .cse2 .cse0 .cse1 (< 0 |old(~waterLevel~0)|)) (or .cse2 (and (= ~pumpRunning~0 0) .cse3)) (let ((.cse4 (= 1 ~systemActive~0)) (.cse6 (<= |old(~waterLevel~0)| 2))) (or (and .cse4 .cse5 .cse6) (and .cse4 .cse7 .cse6))) (or (not .cse5) (and .cse3 (= ~pumpRunning~0 1))) (or (not (= |old(~waterLevel~0)| 1)) .cse0 .cse1))))) [2024-11-18 14:22:59,534 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:59,558 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse2 (= |old(~pumpRunning~0)| 1)) (.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= ~pumpRunning~0 0))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse4 (<= ~waterLevel~0 0)) (.cse5 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= 1 ~systemActive~0)) (.cse6 (= ~waterLevel~0 1))) (or (and .cse3 .cse2 .cse4 .cse5) (and (= 2 ~waterLevel~0) .cse3 .cse0) (and .cse3 .cse0 .cse4) (and .cse3 .cse2 .cse6 .cse5) (and .cse3 .cse0 .cse6))) (or .cse1 (= ~methaneLevelCritical~0 0)))) Eliminated clause: (let ((.cse1 (= ~pumpRunning~0 0))) (and (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse2 (= |old(~pumpRunning~0)| 1)) (.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse4 (<= ~waterLevel~0 0)) (.cse5 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= 1 ~systemActive~0)) (.cse6 (= ~waterLevel~0 1))) (or (and .cse3 .cse2 .cse4 .cse5) (and (= 2 ~waterLevel~0) .cse3 .cse0) (and .cse3 .cse0 .cse4) (and .cse3 .cse2 .cse6 .cse5) (and .cse3 .cse0 .cse6)))))) (or .cse1 (= ~methaneLevelCritical~0 0)))) [2024-11-18 14:22:59,564 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:59,567 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse0 (= ~methaneLevelCritical~0 0)) (.cse5 (= |old(~waterLevel~0)| 2)) (.cse3 (= ~pumpRunning~0 1)) (.cse4 (= ~pumpRunning~0 0)) (.cse1 (= 1 ~systemActive~0)) (.cse2 (<= |old(~waterLevel~0)| 1))) (or (and .cse0 .cse1 .cse2 (<= 1 ~switchedOnBeforeTS~0) .cse3) (and .cse4 .cse1 .cse5) (and .cse0 .cse1 .cse5 .cse3) (and .cse4 .cse1 .cse2))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse3 (= ~pumpRunning~0 1)) (.cse4 (<= ~waterLevel~0 1)) (.cse5 (= ~pumpRunning~0 0)) (.cse0 (= 2 ~waterLevel~0)) (.cse2 (= 1 ~systemActive~0))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse1 .cse4 .cse2 (<= 1 ~switchedOnBeforeTS~0) .cse3) (and .cse5 .cse4 .cse2) (and .cse5 .cse0 .cse2))) [2024-11-18 14:22:59,580 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (let ((.cse2 (= |old(~pumpRunning~0)| 1)) (.cse0 (= |old(~pumpRunning~0)| 0)) (.cse1 (= ~pumpRunning~0 0))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse4 (<= ~waterLevel~0 0)) (.cse5 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= 1 ~systemActive~0)) (.cse6 (= ~waterLevel~0 1))) (or (and .cse3 .cse2 .cse4 .cse5) (and (= 2 ~waterLevel~0) .cse3 .cse0) (and .cse3 .cse0 .cse4) (and .cse3 .cse2 .cse6 .cse5) (and .cse3 .cse0 .cse6))) (or .cse1 (= ~methaneLevelCritical~0 0)))) Eliminated clause: (let ((.cse1 (= ~pumpRunning~0 0))) (and (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse2 (= |old(~pumpRunning~0)| 1)) (.cse0 (= |old(~pumpRunning~0)| 0))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse4 (<= ~waterLevel~0 0)) (.cse5 (<= 1 ~switchedOnBeforeTS~0)) (.cse3 (= 1 ~systemActive~0)) (.cse6 (= ~waterLevel~0 1))) (or (and .cse3 .cse2 .cse4 .cse5) (and (= 2 ~waterLevel~0) .cse3 .cse0) (and .cse3 .cse0 .cse4) (and .cse3 .cse2 .cse6 .cse5) (and .cse3 .cse0 .cse6)))))) (or .cse1 (= ~methaneLevelCritical~0 0)))) [2024-11-18 14:22:59,583 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:59,587 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 18.11 02:22:59 BoogieIcfgContainer [2024-11-18 14:22:59,587 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-18 14:22:59,588 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-18 14:22:59,588 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-18 14:22:59,588 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-18 14:22:59,588 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:22:17" (3/4) ... [2024-11-18 14:22:59,590 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-18 14:22:59,593 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-18 14:22:59,593 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-18 14:22:59,593 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-18 14:22:59,593 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-18 14:22:59,594 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-18 14:22:59,594 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:59,594 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-18 14:22:59,594 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-18 14:22:59,594 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-18 14:22:59,594 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-18 14:22:59,599 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 21 nodes and edges [2024-11-18 14:22:59,600 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-18 14:22:59,601 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-18 14:22:59,601 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:22:59,601 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:22:59,696 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-18 14:22:59,697 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-18 14:22:59,697 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-18 14:22:59,697 INFO L158 Benchmark]: Toolchain (without parser) took 43869.58ms. Allocated memory was 153.1MB in the beginning and 1.7GB in the end (delta: 1.5GB). Free memory was 80.2MB in the beginning and 1.4GB in the end (delta: -1.3GB). Peak memory consumption was 177.1MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,698 INFO L158 Benchmark]: CDTParser took 0.15ms. Allocated memory is still 153.1MB. Free memory is still 119.1MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-18 14:22:59,698 INFO L158 Benchmark]: CACSL2BoogieTranslator took 576.02ms. Allocated memory was 153.1MB in the beginning and 251.7MB in the end (delta: 98.6MB). Free memory was 80.0MB in the beginning and 216.0MB in the end (delta: -136.1MB). Peak memory consumption was 24.1MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,698 INFO L158 Benchmark]: Boogie Procedure Inliner took 43.43ms. Allocated memory is still 251.7MB. Free memory was 216.0MB in the beginning and 212.9MB in the end (delta: 3.1MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,698 INFO L158 Benchmark]: Boogie Preprocessor took 83.11ms. Allocated memory is still 251.7MB. Free memory was 212.9MB in the beginning and 210.8MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,699 INFO L158 Benchmark]: RCFGBuilder took 463.79ms. Allocated memory is still 251.7MB. Free memory was 210.8MB in the beginning and 189.8MB in the end (delta: 21.0MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,699 INFO L158 Benchmark]: TraceAbstraction took 42582.21ms. Allocated memory was 251.7MB in the beginning and 1.7GB in the end (delta: 1.4GB). Free memory was 189.8MB in the beginning and 1.4GB in the end (delta: -1.2GB). Peak memory consumption was 989.7MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,699 INFO L158 Benchmark]: Witness Printer took 109.23ms. Allocated memory is still 1.7GB. Free memory was 1.4GB in the beginning and 1.4GB in the end (delta: 9.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-18 14:22:59,700 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.15ms. Allocated memory is still 153.1MB. Free memory is still 119.1MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 576.02ms. Allocated memory was 153.1MB in the beginning and 251.7MB in the end (delta: 98.6MB). Free memory was 80.0MB in the beginning and 216.0MB in the end (delta: -136.1MB). Peak memory consumption was 24.1MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 43.43ms. Allocated memory is still 251.7MB. Free memory was 216.0MB in the beginning and 212.9MB in the end (delta: 3.1MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Boogie Preprocessor took 83.11ms. Allocated memory is still 251.7MB. Free memory was 212.9MB in the beginning and 210.8MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 463.79ms. Allocated memory is still 251.7MB. Free memory was 210.8MB in the beginning and 189.8MB in the end (delta: 21.0MB). Peak memory consumption was 21.0MB. Max. memory is 16.1GB. * TraceAbstraction took 42582.21ms. Allocated memory was 251.7MB in the beginning and 1.7GB in the end (delta: 1.4GB). Free memory was 189.8MB in the beginning and 1.4GB in the end (delta: -1.2GB). Peak memory consumption was 989.7MB. Max. memory is 16.1GB. * Witness Printer took 109.23ms. Allocated memory is still 1.7GB. Free memory was 1.4GB in the beginning and 1.4GB in the end (delta: 9.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [49] - GenericResultAtLocation [Line: 118]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [118] - GenericResultAtLocation [Line: 372]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [372] - GenericResultAtLocation [Line: 476]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [476] - GenericResultAtLocation [Line: 842]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [842] - GenericResultAtLocation [Line: 892]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [892] - GenericResultAtLocation [Line: 930]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [930] - GenericResultAtLocation [Line: 939]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [939] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 935]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 113 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 15.3s, OverallIterations: 14, TraceHistogramMax: 9, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 6.9s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 3802 SdHoareTripleChecker+Valid, 4.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 3761 mSDsluCounter, 10083 SdHoareTripleChecker+Invalid, 3.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 8048 mSDsCounter, 1345 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 7123 IncrementalHoareTripleChecker+Invalid, 8468 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1345 mSolverCounterUnsat, 2035 mSDtfsCounter, 7123 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 2481 GetRequests, 2203 SyntacticMatches, 26 SemanticMatches, 252 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2433 ImplicationChecksByTransitivity, 2.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1696occurred in iteration=13, InterpolantAutomatonStates: 192, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.6s AutomataMinimizationTime, 14 MinimizatonAttempts, 472 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 5.6s InterpolantComputationTime, 2660 NumberOfCodeBlocks, 2660 NumberOfCodeBlocksAsserted, 19 NumberOfCheckSat, 3734 ConstructedInterpolants, 0 QuantifiedInterpolants, 8077 SizeOfPredicates, 5 NumberOfNonLiveVariables, 3106 ConjunctsInSsa, 81 ConjunctsInUnsatCore, 24 InterpolantComputations, 9 PerfectInterpolantSequences, 3205/3897 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 63]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 64]: Loop Invariant Derived loop invariant: (((((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (splverifierCounter == 0))) - InvariantResult [Line: 951]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 270]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) || (((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS))) && (pumpRunning == 1)) Ensures: (((pumpRunning == 0) && (((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)))) && ((((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 160]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) Ensures: (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 400]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (1 == systemActive) Ensures: (((((((((\old(methaneLevelCritical) == 0) && (1 == systemActive)) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) == 0))) && ((\old(methaneLevelCritical) != 0) || (methaneLevelCritical != 0))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 941]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((systemActive == \old(systemActive)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 133]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 2)) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 2))) && (((((((\old(waterLevel) == ((long long) waterLevel + 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((waterLevel <= 0) && (\old(waterLevel) == waterLevel)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (\old(waterLevel) == ((long long) waterLevel + 1))) && (1 <= switchedOnBeforeTS))) || (\old(pumpRunning) != 1)) || (((pumpRunning == 0) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)))) && ((((1 < \old(waterLevel)) || ((1 <= switchedOnBeforeTS) && (waterLevel == 0))) || (\old(pumpRunning) != 1)) || ((\old(waterLevel) == waterLevel) && (1 <= switchedOnBeforeTS)))) && ((((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (2 == waterLevel))) || (\old(waterLevel) != 2)) || ((2 == waterLevel) && (pumpRunning == 1)))) && (((1 < \old(waterLevel)) || (\old(pumpRunning) != 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel)))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && ((((systemActive == \old(systemActive)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 168]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((pumpRunning == 0) || (methaneLevelCritical == 0)) Ensures: ((((((\old(pumpRunning) != 1) || (pumpRunning == 1)) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || ((2 == waterLevel) && (pumpRunning == 1)))) && ((((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) || (((2 == waterLevel) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 0))) || ((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel == 1)))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && ((((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 388]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: (((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (pumpRunning == 1)) || (((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((((((2 == waterLevel) || (\old(waterLevel) != 2)) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && ((waterLevel != 0) || (\old(waterLevel) != 0))) && (waterLevel <= ((long long) \old(waterLevel) + 1))) && ((((((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(waterLevel) <= 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) <= 1)))) && ((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 194]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: ((pumpRunning == 0) || (methaneLevelCritical == 0)) Ensures: (((((((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (2 == waterLevel)) && ((pumpRunning == 0) || (pumpRunning == 1))) && (((((((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(pumpRunning) == 1)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) || (((2 == waterLevel) && (1 == systemActive)) && (\old(pumpRunning) == 0))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 0))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel == 1))) || (((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(pumpRunning) == 1)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && ((((((systemActive == \old(systemActive)) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 289]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: ((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) Ensures: (((((pumpRunning != 0) || (\result == 0)) && ((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)))) && ((\result == 1) || (pumpRunning != 1))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 278]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (((((waterLevel <= 1) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((methaneLevelCritical == \result) && (((((waterLevel <= 1) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)))) && (((((((pumpRunning == \old(pumpRunning)) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-18 14:22:59,725 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE