./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 3061b6dc Calling Ultimate with: /root/.sdkman/candidates/java/11.0.12-open/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash b18268074b12ff6db81668668ee2d33af663d931f7be534d8799200934e1992a --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-3061b6d-m [2024-11-18 14:22:17,506 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-18 14:22:17,550 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-18 14:22:17,553 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-18 14:22:17,554 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-18 14:22:17,568 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-18 14:22:17,569 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-18 14:22:17,569 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-18 14:22:17,570 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-18 14:22:17,570 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-18 14:22:17,570 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-18 14:22:17,588 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-18 14:22:17,589 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-18 14:22:17,589 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-18 14:22:17,589 INFO L153 SettingsManager]: * Use SBE=true [2024-11-18 14:22:17,590 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-18 14:22:17,590 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-18 14:22:17,590 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-18 14:22:17,590 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-18 14:22:17,591 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-18 14:22:17,591 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-18 14:22:17,595 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-18 14:22:17,596 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-18 14:22:17,596 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-18 14:22:17,596 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-18 14:22:17,596 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-18 14:22:17,597 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-18 14:22:17,597 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-18 14:22:17,597 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-18 14:22:17,597 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-18 14:22:17,598 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-18 14:22:17,598 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-18 14:22:17,598 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:22:17,598 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-18 14:22:17,598 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-18 14:22:17,599 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-18 14:22:17,599 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-18 14:22:17,599 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-18 14:22:17,599 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-18 14:22:17,599 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-18 14:22:17,599 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-18 14:22:17,600 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-18 14:22:17,600 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> b18268074b12ff6db81668668ee2d33af663d931f7be534d8799200934e1992a [2024-11-18 14:22:17,780 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-18 14:22:17,795 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-18 14:22:17,796 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-18 14:22:17,797 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-18 14:22:17,798 INFO L274 PluginConnector]: CDTParser initialized [2024-11-18 14:22:17,798 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c [2024-11-18 14:22:19,114 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-18 14:22:19,308 INFO L384 CDTParser]: Found 1 translation units. [2024-11-18 14:22:19,308 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c [2024-11-18 14:22:19,318 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/679657111/bd9040f3ee3742b1a0457419df17ea71/FLAGc63c21825 [2024-11-18 14:22:19,329 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/679657111/bd9040f3ee3742b1a0457419df17ea71 [2024-11-18 14:22:19,331 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-18 14:22:19,332 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-18 14:22:19,347 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-18 14:22:19,347 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-18 14:22:19,353 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-18 14:22:19,354 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,354 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@62de7325 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19, skipping insertion in model container [2024-11-18 14:22:19,355 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,399 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-18 14:22:19,561 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c[2897,2910] [2024-11-18 14:22:19,655 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:22:19,662 INFO L200 MainTranslator]: Completed pre-run [2024-11-18 14:22:19,669 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [49] [2024-11-18 14:22:19,670 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [101] [2024-11-18 14:22:19,670 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [139] [2024-11-18 14:22:19,671 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [148] [2024-11-18 14:22:19,671 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [220] [2024-11-18 14:22:19,671 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [318] [2024-11-18 14:22:19,671 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [583] [2024-11-18 14:22:19,672 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [686] [2024-11-18 14:22:19,680 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_product63.cil.c[2897,2910] [2024-11-18 14:22:19,719 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-18 14:22:19,736 INFO L204 MainTranslator]: Completed translation [2024-11-18 14:22:19,737 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19 WrapperNode [2024-11-18 14:22:19,737 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-18 14:22:19,738 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-18 14:22:19,738 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-18 14:22:19,738 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-18 14:22:19,744 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,753 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,776 INFO L138 Inliner]: procedures = 60, calls = 109, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 246 [2024-11-18 14:22:19,777 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-18 14:22:19,777 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-18 14:22:19,778 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-18 14:22:19,778 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-18 14:22:19,788 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,788 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,790 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,803 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-18 14:22:19,803 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,803 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,806 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,809 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,810 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,811 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,812 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-18 14:22:19,813 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-18 14:22:19,813 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-18 14:22:19,813 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-18 14:22:19,814 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (1/1) ... [2024-11-18 14:22:19,818 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-18 14:22:19,828 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:19,851 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-18 14:22:19,853 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-18 14:22:19,886 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-18 14:22:19,887 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-18 14:22:19,887 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-18 14:22:19,887 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-18 14:22:19,887 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-18 14:22:19,891 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-18 14:22:19,891 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-18 14:22:19,891 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:19,891 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:19,891 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-18 14:22:19,891 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-18 14:22:19,892 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-18 14:22:19,892 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-18 14:22:19,892 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-18 14:22:19,892 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-18 14:22:19,892 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-18 14:22:19,892 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-18 14:22:19,895 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-18 14:22:19,895 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-18 14:22:19,895 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-18 14:22:19,895 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-18 14:22:19,895 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-18 14:22:19,895 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-18 14:22:19,896 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-18 14:22:19,961 INFO L238 CfgBuilder]: Building ICFG [2024-11-18 14:22:19,964 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-18 14:22:20,387 INFO L? ?]: Removed 52 outVars from TransFormulas that were not future-live. [2024-11-18 14:22:20,387 INFO L287 CfgBuilder]: Performing block encoding [2024-11-18 14:22:20,407 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-18 14:22:20,407 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-18 14:22:20,408 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:22:20 BoogieIcfgContainer [2024-11-18 14:22:20,408 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-18 14:22:20,409 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-18 14:22:20,410 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-18 14:22:20,414 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-18 14:22:20,414 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 18.11 02:22:19" (1/3) ... [2024-11-18 14:22:20,415 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2bd7f87a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:22:20, skipping insertion in model container [2024-11-18 14:22:20,415 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 18.11 02:22:19" (2/3) ... [2024-11-18 14:22:20,416 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2bd7f87a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 18.11 02:22:20, skipping insertion in model container [2024-11-18 14:22:20,416 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:22:20" (3/3) ... [2024-11-18 14:22:20,417 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product63.cil.c [2024-11-18 14:22:20,432 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-18 14:22:20,432 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-18 14:22:20,498 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-18 14:22:20,508 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@655ecc60, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-18 14:22:20,508 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-18 14:22:20,515 INFO L276 IsEmpty]: Start isEmpty. Operand has 117 states, 86 states have (on average 1.3604651162790697) internal successors, (117), 97 states have internal predecessors, (117), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) [2024-11-18 14:22:20,526 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 33 [2024-11-18 14:22:20,527 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:20,527 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:20,528 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:20,532 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:20,532 INFO L85 PathProgramCache]: Analyzing trace with hash 2028778160, now seen corresponding path program 1 times [2024-11-18 14:22:20,541 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:20,542 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [984189572] [2024-11-18 14:22:20,542 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:20,542 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:20,637 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:20,701 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:20,702 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:20,702 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [984189572] [2024-11-18 14:22:20,702 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [984189572] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:20,703 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:20,703 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-18 14:22:20,707 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2074727114] [2024-11-18 14:22:20,708 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:20,712 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-18 14:22:20,712 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:20,737 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-18 14:22:20,737 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:22:20,739 INFO L87 Difference]: Start difference. First operand has 117 states, 86 states have (on average 1.3604651162790697) internal successors, (117), 97 states have internal predecessors, (117), 19 states have call successors, (19), 10 states have call predecessors, (19), 10 states have return successors, (19), 14 states have call predecessors, (19), 19 states have call successors, (19) Second operand has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:22:20,781 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:20,782 INFO L93 Difference]: Finished difference Result 225 states and 304 transitions. [2024-11-18 14:22:20,782 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-18 14:22:20,783 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 32 [2024-11-18 14:22:20,784 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:20,790 INFO L225 Difference]: With dead ends: 225 [2024-11-18 14:22:20,790 INFO L226 Difference]: Without dead ends: 108 [2024-11-18 14:22:20,793 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-18 14:22:20,795 INFO L432 NwaCegarLoop]: 149 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 149 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:20,796 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 149 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:20,833 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 108 states. [2024-11-18 14:22:20,866 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 108 to 108. [2024-11-18 14:22:20,868 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 108 states, 79 states have (on average 1.3037974683544304) internal successors, (103), 89 states have internal predecessors, (103), 19 states have call successors, (19), 10 states have call predecessors, (19), 9 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2024-11-18 14:22:20,873 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 108 states to 108 states and 140 transitions. [2024-11-18 14:22:20,876 INFO L78 Accepts]: Start accepts. Automaton has 108 states and 140 transitions. Word has length 32 [2024-11-18 14:22:20,877 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:20,877 INFO L471 AbstractCegarLoop]: Abstraction has 108 states and 140 transitions. [2024-11-18 14:22:20,877 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 12.0) internal successors, (24), 2 states have internal predecessors, (24), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2024-11-18 14:22:20,877 INFO L276 IsEmpty]: Start isEmpty. Operand 108 states and 140 transitions. [2024-11-18 14:22:20,881 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 38 [2024-11-18 14:22:20,881 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:20,881 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:20,882 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-18 14:22:20,882 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:20,884 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:20,884 INFO L85 PathProgramCache]: Analyzing trace with hash -257998862, now seen corresponding path program 1 times [2024-11-18 14:22:20,884 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:20,884 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1634368381] [2024-11-18 14:22:20,884 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:20,884 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:20,906 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,002 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:21,003 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,003 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1634368381] [2024-11-18 14:22:21,003 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1634368381] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:21,003 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:21,003 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:22:21,003 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1446559112] [2024-11-18 14:22:21,003 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:21,004 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:22:21,004 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:21,005 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:22:21,005 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:21,005 INFO L87 Difference]: Start difference. First operand 108 states and 140 transitions. Second operand has 3 states, 3 states have (on average 10.0) internal successors, (30), 3 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:22:21,044 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,044 INFO L93 Difference]: Finished difference Result 307 states and 406 transitions. [2024-11-18 14:22:21,044 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:22:21,045 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 10.0) internal successors, (30), 3 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 37 [2024-11-18 14:22:21,045 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,047 INFO L225 Difference]: With dead ends: 307 [2024-11-18 14:22:21,047 INFO L226 Difference]: Without dead ends: 207 [2024-11-18 14:22:21,048 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:21,049 INFO L432 NwaCegarLoop]: 156 mSDtfsCounter, 115 mSDsluCounter, 129 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 115 SdHoareTripleChecker+Valid, 285 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,049 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [115 Valid, 285 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:21,050 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 207 states. [2024-11-18 14:22:21,068 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 207 to 204. [2024-11-18 14:22:21,069 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 204 states, 147 states have (on average 1.3197278911564625) internal successors, (194), 166 states have internal predecessors, (194), 38 states have call successors, (38), 20 states have call predecessors, (38), 18 states have return successors, (36), 25 states have call predecessors, (36), 36 states have call successors, (36) [2024-11-18 14:22:21,071 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 204 states to 204 states and 268 transitions. [2024-11-18 14:22:21,072 INFO L78 Accepts]: Start accepts. Automaton has 204 states and 268 transitions. Word has length 37 [2024-11-18 14:22:21,072 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,072 INFO L471 AbstractCegarLoop]: Abstraction has 204 states and 268 transitions. [2024-11-18 14:22:21,072 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 10.0) internal successors, (30), 3 states have internal predecessors, (30), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:22:21,072 INFO L276 IsEmpty]: Start isEmpty. Operand 204 states and 268 transitions. [2024-11-18 14:22:21,074 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-18 14:22:21,074 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,074 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,074 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-18 14:22:21,074 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,075 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,075 INFO L85 PathProgramCache]: Analyzing trace with hash 702056680, now seen corresponding path program 1 times [2024-11-18 14:22:21,075 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,075 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1248533277] [2024-11-18 14:22:21,076 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,076 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,090 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,167 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2024-11-18 14:22:21,167 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,167 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1248533277] [2024-11-18 14:22:21,168 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1248533277] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:21,168 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:21,168 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-18 14:22:21,168 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [275173204] [2024-11-18 14:22:21,168 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:21,168 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-18 14:22:21,169 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:21,169 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-18 14:22:21,169 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-18 14:22:21,169 INFO L87 Difference]: Start difference. First operand 204 states and 268 transitions. Second operand has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:22:21,319 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,322 INFO L93 Difference]: Finished difference Result 526 states and 719 transitions. [2024-11-18 14:22:21,322 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-18 14:22:21,322 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 41 [2024-11-18 14:22:21,323 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,327 INFO L225 Difference]: With dead ends: 526 [2024-11-18 14:22:21,327 INFO L226 Difference]: Without dead ends: 330 [2024-11-18 14:22:21,329 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-18 14:22:21,333 INFO L432 NwaCegarLoop]: 137 mSDtfsCounter, 100 mSDsluCounter, 457 mSDsCounter, 0 mSdLazyCounter, 86 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 102 SdHoareTripleChecker+Valid, 594 SdHoareTripleChecker+Invalid, 97 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 86 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,333 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [102 Valid, 594 Invalid, 97 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 86 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:22:21,334 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 330 states. [2024-11-18 14:22:21,374 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 330 to 329. [2024-11-18 14:22:21,377 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 329 states, 240 states have (on average 1.2666666666666666) internal successors, (304), 259 states have internal predecessors, (304), 54 states have call successors, (54), 38 states have call predecessors, (54), 34 states have return successors, (70), 45 states have call predecessors, (70), 50 states have call successors, (70) [2024-11-18 14:22:21,380 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 329 states to 329 states and 428 transitions. [2024-11-18 14:22:21,381 INFO L78 Accepts]: Start accepts. Automaton has 329 states and 428 transitions. Word has length 41 [2024-11-18 14:22:21,382 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,382 INFO L471 AbstractCegarLoop]: Abstraction has 329 states and 428 transitions. [2024-11-18 14:22:21,382 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 6.0) internal successors, (36), 5 states have internal predecessors, (36), 2 states have call successors, (3), 1 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2024-11-18 14:22:21,382 INFO L276 IsEmpty]: Start isEmpty. Operand 329 states and 428 transitions. [2024-11-18 14:22:21,384 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-11-18 14:22:21,384 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,384 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,384 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-18 14:22:21,385 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,385 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,385 INFO L85 PathProgramCache]: Analyzing trace with hash 1444776659, now seen corresponding path program 1 times [2024-11-18 14:22:21,385 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,385 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [551346125] [2024-11-18 14:22:21,386 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,386 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,399 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,469 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:21,470 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,470 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [551346125] [2024-11-18 14:22:21,470 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [551346125] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:21,470 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:21,470 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-18 14:22:21,471 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [190073603] [2024-11-18 14:22:21,471 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:21,471 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-18 14:22:21,472 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:21,472 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-18 14:22:21,473 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:22:21,473 INFO L87 Difference]: Start difference. First operand 329 states and 428 transitions. Second operand has 5 states, 5 states have (on average 10.2) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:21,509 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,509 INFO L93 Difference]: Finished difference Result 656 states and 896 transitions. [2024-11-18 14:22:21,510 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-18 14:22:21,510 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 10.2) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 64 [2024-11-18 14:22:21,510 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,513 INFO L225 Difference]: With dead ends: 656 [2024-11-18 14:22:21,513 INFO L226 Difference]: Without dead ends: 335 [2024-11-18 14:22:21,514 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-18 14:22:21,515 INFO L432 NwaCegarLoop]: 137 mSDtfsCounter, 0 mSDsluCounter, 405 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 542 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,515 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 542 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:21,516 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 335 states. [2024-11-18 14:22:21,533 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 335 to 335. [2024-11-18 14:22:21,534 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 335 states, 246 states have (on average 1.2601626016260163) internal successors, (310), 265 states have internal predecessors, (310), 54 states have call successors, (54), 38 states have call predecessors, (54), 34 states have return successors, (70), 45 states have call predecessors, (70), 50 states have call successors, (70) [2024-11-18 14:22:21,536 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 335 states to 335 states and 434 transitions. [2024-11-18 14:22:21,537 INFO L78 Accepts]: Start accepts. Automaton has 335 states and 434 transitions. Word has length 64 [2024-11-18 14:22:21,537 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,537 INFO L471 AbstractCegarLoop]: Abstraction has 335 states and 434 transitions. [2024-11-18 14:22:21,537 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 10.2) internal successors, (51), 5 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:21,537 INFO L276 IsEmpty]: Start isEmpty. Operand 335 states and 434 transitions. [2024-11-18 14:22:21,539 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-11-18 14:22:21,539 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,539 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,539 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-18 14:22:21,540 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,540 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,540 INFO L85 PathProgramCache]: Analyzing trace with hash -1463987243, now seen corresponding path program 1 times [2024-11-18 14:22:21,540 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,540 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1468083934] [2024-11-18 14:22:21,540 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,541 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,554 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,609 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:21,610 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,610 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1468083934] [2024-11-18 14:22:21,611 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1468083934] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:21,611 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:21,611 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:22:21,612 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [523806846] [2024-11-18 14:22:21,612 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:21,612 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:22:21,613 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:21,613 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:22:21,613 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:21,613 INFO L87 Difference]: Start difference. First operand 335 states and 434 transitions. Second operand has 4 states, 4 states have (on average 12.75) internal successors, (51), 4 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:21,640 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,640 INFO L93 Difference]: Finished difference Result 666 states and 906 transitions. [2024-11-18 14:22:21,641 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:22:21,641 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 12.75) internal successors, (51), 4 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 64 [2024-11-18 14:22:21,641 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,643 INFO L225 Difference]: With dead ends: 666 [2024-11-18 14:22:21,643 INFO L226 Difference]: Without dead ends: 339 [2024-11-18 14:22:21,644 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:21,645 INFO L432 NwaCegarLoop]: 138 mSDtfsCounter, 0 mSDsluCounter, 270 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 408 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,645 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 408 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:21,646 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 339 states. [2024-11-18 14:22:21,658 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 339 to 339. [2024-11-18 14:22:21,659 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 339 states, 250 states have (on average 1.256) internal successors, (314), 269 states have internal predecessors, (314), 54 states have call successors, (54), 38 states have call predecessors, (54), 34 states have return successors, (70), 45 states have call predecessors, (70), 50 states have call successors, (70) [2024-11-18 14:22:21,661 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 339 states to 339 states and 438 transitions. [2024-11-18 14:22:21,661 INFO L78 Accepts]: Start accepts. Automaton has 339 states and 438 transitions. Word has length 64 [2024-11-18 14:22:21,661 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,661 INFO L471 AbstractCegarLoop]: Abstraction has 339 states and 438 transitions. [2024-11-18 14:22:21,662 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 12.75) internal successors, (51), 4 states have internal predecessors, (51), 2 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:21,662 INFO L276 IsEmpty]: Start isEmpty. Operand 339 states and 438 transitions. [2024-11-18 14:22:21,663 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2024-11-18 14:22:21,663 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,663 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,663 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-18 14:22:21,664 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,664 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,664 INFO L85 PathProgramCache]: Analyzing trace with hash 1670430256, now seen corresponding path program 1 times [2024-11-18 14:22:21,664 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,664 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [42990440] [2024-11-18 14:22:21,664 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,665 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,673 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,713 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:21,713 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,713 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [42990440] [2024-11-18 14:22:21,714 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [42990440] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:21,714 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:21,714 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-18 14:22:21,714 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1110519940] [2024-11-18 14:22:21,714 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:21,714 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-18 14:22:21,715 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:21,715 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-18 14:22:21,715 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:21,715 INFO L87 Difference]: Start difference. First operand 339 states and 438 transitions. Second operand has 3 states, 3 states have (on average 15.333333333333334) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:21,726 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,726 INFO L93 Difference]: Finished difference Result 555 states and 697 transitions. [2024-11-18 14:22:21,727 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-18 14:22:21,727 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 15.333333333333334) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 60 [2024-11-18 14:22:21,727 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,728 INFO L225 Difference]: With dead ends: 555 [2024-11-18 14:22:21,729 INFO L226 Difference]: Without dead ends: 303 [2024-11-18 14:22:21,729 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-18 14:22:21,730 INFO L432 NwaCegarLoop]: 127 mSDtfsCounter, 16 mSDsluCounter, 106 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 20 SdHoareTripleChecker+Valid, 233 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,730 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [20 Valid, 233 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-18 14:22:21,731 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 303 states. [2024-11-18 14:22:21,748 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 303 to 303. [2024-11-18 14:22:21,749 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 303 states, 226 states have (on average 1.2654867256637168) internal successors, (286), 245 states have internal predecessors, (286), 42 states have call successors, (42), 34 states have call predecessors, (42), 34 states have return successors, (54), 37 states have call predecessors, (54), 42 states have call successors, (54) [2024-11-18 14:22:21,750 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 303 states to 303 states and 382 transitions. [2024-11-18 14:22:21,750 INFO L78 Accepts]: Start accepts. Automaton has 303 states and 382 transitions. Word has length 60 [2024-11-18 14:22:21,750 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,751 INFO L471 AbstractCegarLoop]: Abstraction has 303 states and 382 transitions. [2024-11-18 14:22:21,751 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 15.333333333333334) internal successors, (46), 3 states have internal predecessors, (46), 2 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-18 14:22:21,751 INFO L276 IsEmpty]: Start isEmpty. Operand 303 states and 382 transitions. [2024-11-18 14:22:21,751 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-11-18 14:22:21,752 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,752 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,752 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-18 14:22:21,752 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,752 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,753 INFO L85 PathProgramCache]: Analyzing trace with hash -762387369, now seen corresponding path program 1 times [2024-11-18 14:22:21,753 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,753 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [935921224] [2024-11-18 14:22:21,753 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,753 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,763 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:21,841 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:21,841 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:21,842 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [935921224] [2024-11-18 14:22:21,842 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [935921224] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:21,842 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:21,842 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:22:21,842 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [176840983] [2024-11-18 14:22:21,842 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:21,843 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:22:21,843 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:21,843 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:22:21,843 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:21,843 INFO L87 Difference]: Start difference. First operand 303 states and 382 transitions. Second operand has 4 states, 4 states have (on average 12.75) internal successors, (51), 4 states have internal predecessors, (51), 4 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2024-11-18 14:22:21,938 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:21,938 INFO L93 Difference]: Finished difference Result 976 states and 1272 transitions. [2024-11-18 14:22:21,939 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:22:21,939 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 12.75) internal successors, (51), 4 states have internal predecessors, (51), 4 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) Word has length 64 [2024-11-18 14:22:21,939 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:21,942 INFO L225 Difference]: With dead ends: 976 [2024-11-18 14:22:21,942 INFO L226 Difference]: Without dead ends: 681 [2024-11-18 14:22:21,943 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:21,944 INFO L432 NwaCegarLoop]: 214 mSDtfsCounter, 158 mSDsluCounter, 203 mSDsCounter, 0 mSdLazyCounter, 78 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 158 SdHoareTripleChecker+Valid, 417 SdHoareTripleChecker+Invalid, 83 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 78 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:21,944 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [158 Valid, 417 Invalid, 83 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 78 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-18 14:22:21,945 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 681 states. [2024-11-18 14:22:21,972 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 681 to 669. [2024-11-18 14:22:21,974 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 669 states, 496 states have (on average 1.2439516129032258) internal successors, (617), 531 states have internal predecessors, (617), 94 states have call successors, (94), 76 states have call predecessors, (94), 78 states have return successors, (144), 86 states have call predecessors, (144), 94 states have call successors, (144) [2024-11-18 14:22:21,976 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 669 states to 669 states and 855 transitions. [2024-11-18 14:22:21,977 INFO L78 Accepts]: Start accepts. Automaton has 669 states and 855 transitions. Word has length 64 [2024-11-18 14:22:21,977 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:21,977 INFO L471 AbstractCegarLoop]: Abstraction has 669 states and 855 transitions. [2024-11-18 14:22:21,978 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 12.75) internal successors, (51), 4 states have internal predecessors, (51), 4 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 4 states have call successors, (5) [2024-11-18 14:22:21,978 INFO L276 IsEmpty]: Start isEmpty. Operand 669 states and 855 transitions. [2024-11-18 14:22:21,979 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-11-18 14:22:21,979 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:21,979 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:21,979 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-18 14:22:21,979 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:21,980 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:21,980 INFO L85 PathProgramCache]: Analyzing trace with hash -480731343, now seen corresponding path program 1 times [2024-11-18 14:22:21,980 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:21,980 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [96936667] [2024-11-18 14:22:21,980 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:21,980 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:21,992 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:22,112 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-18 14:22:22,112 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:22,112 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [96936667] [2024-11-18 14:22:22,112 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [96936667] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:22,112 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:22,112 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-18 14:22:22,113 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [509059843] [2024-11-18 14:22:22,113 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:22,113 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-18 14:22:22,113 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:22,114 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-18 14:22:22,114 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=41, Unknown=0, NotChecked=0, Total=56 [2024-11-18 14:22:22,114 INFO L87 Difference]: Start difference. First operand 669 states and 855 transitions. Second operand has 8 states, 8 states have (on average 6.625) internal successors, (53), 7 states have internal predecessors, (53), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-18 14:22:22,634 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:22,634 INFO L93 Difference]: Finished difference Result 1960 states and 2592 transitions. [2024-11-18 14:22:22,634 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-18 14:22:22,635 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 6.625) internal successors, (53), 7 states have internal predecessors, (53), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) Word has length 68 [2024-11-18 14:22:22,635 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:22,641 INFO L225 Difference]: With dead ends: 1960 [2024-11-18 14:22:22,642 INFO L226 Difference]: Without dead ends: 1412 [2024-11-18 14:22:22,644 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=47, Invalid=109, Unknown=0, NotChecked=0, Total=156 [2024-11-18 14:22:22,645 INFO L432 NwaCegarLoop]: 154 mSDtfsCounter, 409 mSDsluCounter, 504 mSDsCounter, 0 mSdLazyCounter, 435 mSolverCounterSat, 103 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 419 SdHoareTripleChecker+Valid, 658 SdHoareTripleChecker+Invalid, 538 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 103 IncrementalHoareTripleChecker+Valid, 435 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:22,645 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [419 Valid, 658 Invalid, 538 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [103 Valid, 435 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2024-11-18 14:22:22,646 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1412 states. [2024-11-18 14:22:22,705 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1412 to 1282. [2024-11-18 14:22:22,707 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1282 states, 947 states have (on average 1.2228088701161564) internal successors, (1158), 1015 states have internal predecessors, (1158), 175 states have call successors, (175), 133 states have call predecessors, (175), 159 states have return successors, (283), 172 states have call predecessors, (283), 175 states have call successors, (283) [2024-11-18 14:22:22,712 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1282 states to 1282 states and 1616 transitions. [2024-11-18 14:22:22,713 INFO L78 Accepts]: Start accepts. Automaton has 1282 states and 1616 transitions. Word has length 68 [2024-11-18 14:22:22,713 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:22,714 INFO L471 AbstractCegarLoop]: Abstraction has 1282 states and 1616 transitions. [2024-11-18 14:22:22,714 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 6.625) internal successors, (53), 7 states have internal predecessors, (53), 4 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 3 states have call predecessors, (6), 4 states have call successors, (6) [2024-11-18 14:22:22,714 INFO L276 IsEmpty]: Start isEmpty. Operand 1282 states and 1616 transitions. [2024-11-18 14:22:22,715 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2024-11-18 14:22:22,715 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:22,715 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:22,716 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-18 14:22:22,716 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:22,716 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:22,716 INFO L85 PathProgramCache]: Analyzing trace with hash -608570004, now seen corresponding path program 1 times [2024-11-18 14:22:22,717 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:22,717 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [270437587] [2024-11-18 14:22:22,717 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:22,717 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:22,734 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:22,791 INFO L134 CoverageAnalysis]: Checked inductivity of 27 backedges. 18 proven. 0 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-18 14:22:22,791 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:22,791 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [270437587] [2024-11-18 14:22:22,791 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [270437587] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-18 14:22:22,791 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-18 14:22:22,791 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-18 14:22:22,791 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [613302791] [2024-11-18 14:22:22,792 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-18 14:22:22,792 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-18 14:22:22,792 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:22,792 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-18 14:22:22,792 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:22,793 INFO L87 Difference]: Start difference. First operand 1282 states and 1616 transitions. Second operand has 4 states, 4 states have (on average 19.25) internal successors, (77), 4 states have internal predecessors, (77), 4 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 4 states have call successors, (8) [2024-11-18 14:22:23,074 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:23,074 INFO L93 Difference]: Finished difference Result 1485 states and 1868 transitions. [2024-11-18 14:22:23,077 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-18 14:22:23,078 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 19.25) internal successors, (77), 4 states have internal predecessors, (77), 4 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 4 states have call successors, (8) Word has length 98 [2024-11-18 14:22:23,078 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:23,084 INFO L225 Difference]: With dead ends: 1485 [2024-11-18 14:22:23,084 INFO L226 Difference]: Without dead ends: 630 [2024-11-18 14:22:23,086 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-18 14:22:23,087 INFO L432 NwaCegarLoop]: 171 mSDtfsCounter, 160 mSDsluCounter, 126 mSDsCounter, 0 mSdLazyCounter, 49 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 160 SdHoareTripleChecker+Valid, 297 SdHoareTripleChecker+Invalid, 51 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 49 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:23,090 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [160 Valid, 297 Invalid, 51 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 49 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-18 14:22:23,091 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 630 states. [2024-11-18 14:22:23,169 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 630 to 630. [2024-11-18 14:22:23,170 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 630 states, 466 states have (on average 1.1909871244635193) internal successors, (555), 497 states have internal predecessors, (555), 84 states have call successors, (84), 66 states have call predecessors, (84), 79 states have return successors, (138), 84 states have call predecessors, (138), 84 states have call successors, (138) [2024-11-18 14:22:23,174 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 630 states to 630 states and 777 transitions. [2024-11-18 14:22:23,175 INFO L78 Accepts]: Start accepts. Automaton has 630 states and 777 transitions. Word has length 98 [2024-11-18 14:22:23,175 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:23,175 INFO L471 AbstractCegarLoop]: Abstraction has 630 states and 777 transitions. [2024-11-18 14:22:23,175 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 19.25) internal successors, (77), 4 states have internal predecessors, (77), 4 states have call successors, (9), 2 states have call predecessors, (9), 2 states have return successors, (8), 3 states have call predecessors, (8), 4 states have call successors, (8) [2024-11-18 14:22:23,176 INFO L276 IsEmpty]: Start isEmpty. Operand 630 states and 777 transitions. [2024-11-18 14:22:23,176 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 122 [2024-11-18 14:22:23,178 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:23,178 INFO L215 NwaCegarLoop]: trace histogram [3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:23,178 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8 [2024-11-18 14:22:23,178 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:23,179 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:23,179 INFO L85 PathProgramCache]: Analyzing trace with hash 115908773, now seen corresponding path program 1 times [2024-11-18 14:22:23,179 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:23,179 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [768598360] [2024-11-18 14:22:23,179 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:23,180 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:23,199 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:23,320 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 8 proven. 20 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-18 14:22:23,320 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:23,320 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [768598360] [2024-11-18 14:22:23,320 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [768598360] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:23,320 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [260903874] [2024-11-18 14:22:23,321 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:23,321 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:23,321 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:23,323 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:23,328 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-18 14:22:23,411 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:23,413 INFO L255 TraceCheckSpWp]: Trace formula consists of 381 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-18 14:22:23,418 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:23,565 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 30 proven. 11 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-18 14:22:23,565 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:23,776 INFO L134 CoverageAnalysis]: Checked inductivity of 41 backedges. 18 proven. 10 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2024-11-18 14:22:23,776 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [260903874] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:23,776 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:23,777 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 15 [2024-11-18 14:22:23,777 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [433437147] [2024-11-18 14:22:23,777 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:23,777 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-11-18 14:22:23,778 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:23,778 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-11-18 14:22:23,778 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=41, Invalid=169, Unknown=0, NotChecked=0, Total=210 [2024-11-18 14:22:23,778 INFO L87 Difference]: Start difference. First operand 630 states and 777 transitions. Second operand has 15 states, 15 states have (on average 10.933333333333334) internal successors, (164), 13 states have internal predecessors, (164), 7 states have call successors, (27), 4 states have call predecessors, (27), 8 states have return successors, (26), 10 states have call predecessors, (26), 7 states have call successors, (26) [2024-11-18 14:22:24,253 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:24,253 INFO L93 Difference]: Finished difference Result 1410 states and 1802 transitions. [2024-11-18 14:22:24,253 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-11-18 14:22:24,254 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 10.933333333333334) internal successors, (164), 13 states have internal predecessors, (164), 7 states have call successors, (27), 4 states have call predecessors, (27), 8 states have return successors, (26), 10 states have call predecessors, (26), 7 states have call successors, (26) Word has length 121 [2024-11-18 14:22:24,254 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:24,257 INFO L225 Difference]: With dead ends: 1410 [2024-11-18 14:22:24,257 INFO L226 Difference]: Without dead ends: 841 [2024-11-18 14:22:24,259 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 270 GetRequests, 239 SyntacticMatches, 4 SemanticMatches, 27 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 164 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=208, Invalid=604, Unknown=0, NotChecked=0, Total=812 [2024-11-18 14:22:24,259 INFO L432 NwaCegarLoop]: 226 mSDtfsCounter, 441 mSDsluCounter, 1147 mSDsCounter, 0 mSdLazyCounter, 319 mSolverCounterSat, 173 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 443 SdHoareTripleChecker+Valid, 1373 SdHoareTripleChecker+Invalid, 492 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 173 IncrementalHoareTripleChecker+Valid, 319 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:24,260 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [443 Valid, 1373 Invalid, 492 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [173 Valid, 319 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2024-11-18 14:22:24,260 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 841 states. [2024-11-18 14:22:24,297 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 841 to 744. [2024-11-18 14:22:24,298 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 744 states, 546 states have (on average 1.1758241758241759) internal successors, (642), 586 states have internal predecessors, (642), 99 states have call successors, (99), 84 states have call predecessors, (99), 98 states have return successors, (143), 100 states have call predecessors, (143), 99 states have call successors, (143) [2024-11-18 14:22:24,300 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 744 states to 744 states and 884 transitions. [2024-11-18 14:22:24,301 INFO L78 Accepts]: Start accepts. Automaton has 744 states and 884 transitions. Word has length 121 [2024-11-18 14:22:24,302 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:24,302 INFO L471 AbstractCegarLoop]: Abstraction has 744 states and 884 transitions. [2024-11-18 14:22:24,302 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 10.933333333333334) internal successors, (164), 13 states have internal predecessors, (164), 7 states have call successors, (27), 4 states have call predecessors, (27), 8 states have return successors, (26), 10 states have call predecessors, (26), 7 states have call successors, (26) [2024-11-18 14:22:24,302 INFO L276 IsEmpty]: Start isEmpty. Operand 744 states and 884 transitions. [2024-11-18 14:22:24,304 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 216 [2024-11-18 14:22:24,304 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:24,304 INFO L215 NwaCegarLoop]: trace histogram [5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:24,318 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-18 14:22:24,508 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-18 14:22:24,509 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:24,509 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:24,509 INFO L85 PathProgramCache]: Analyzing trace with hash -71077255, now seen corresponding path program 1 times [2024-11-18 14:22:24,510 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:24,510 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [201904754] [2024-11-18 14:22:24,510 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:24,510 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:24,528 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:24,722 INFO L134 CoverageAnalysis]: Checked inductivity of 229 backedges. 92 proven. 35 refuted. 0 times theorem prover too weak. 102 trivial. 0 not checked. [2024-11-18 14:22:24,722 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:24,723 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [201904754] [2024-11-18 14:22:24,723 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [201904754] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:24,723 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1606013333] [2024-11-18 14:22:24,723 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:24,723 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:24,723 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:24,725 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:24,726 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-18 14:22:24,874 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:24,876 INFO L255 TraceCheckSpWp]: Trace formula consists of 610 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-18 14:22:24,880 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:25,070 INFO L134 CoverageAnalysis]: Checked inductivity of 229 backedges. 167 proven. 4 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2024-11-18 14:22:25,070 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:25,510 INFO L134 CoverageAnalysis]: Checked inductivity of 229 backedges. 78 proven. 42 refuted. 0 times theorem prover too weak. 109 trivial. 0 not checked. [2024-11-18 14:22:25,510 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1606013333] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:25,510 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:25,510 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 10, 11] total 25 [2024-11-18 14:22:25,511 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [996837899] [2024-11-18 14:22:25,511 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:25,511 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-18 14:22:25,511 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:25,512 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-18 14:22:25,512 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=102, Invalid=498, Unknown=0, NotChecked=0, Total=600 [2024-11-18 14:22:25,513 INFO L87 Difference]: Start difference. First operand 744 states and 884 transitions. Second operand has 25 states, 25 states have (on average 9.24) internal successors, (231), 22 states have internal predecessors, (231), 10 states have call successors, (39), 5 states have call predecessors, (39), 11 states have return successors, (45), 11 states have call predecessors, (45), 10 states have call successors, (45) [2024-11-18 14:22:27,270 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:27,271 INFO L93 Difference]: Finished difference Result 2207 states and 2781 transitions. [2024-11-18 14:22:27,271 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 44 states. [2024-11-18 14:22:27,271 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 25 states have (on average 9.24) internal successors, (231), 22 states have internal predecessors, (231), 10 states have call successors, (39), 5 states have call predecessors, (39), 11 states have return successors, (45), 11 states have call predecessors, (45), 10 states have call successors, (45) Word has length 215 [2024-11-18 14:22:27,272 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:27,277 INFO L225 Difference]: With dead ends: 2207 [2024-11-18 14:22:27,277 INFO L226 Difference]: Without dead ends: 1438 [2024-11-18 14:22:27,281 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 492 GetRequests, 424 SyntacticMatches, 3 SemanticMatches, 65 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 982 ImplicationChecksByTransitivity, 0.8s TimeCoverageRelationStatistics Valid=758, Invalid=3664, Unknown=0, NotChecked=0, Total=4422 [2024-11-18 14:22:27,281 INFO L432 NwaCegarLoop]: 101 mSDtfsCounter, 1171 mSDsluCounter, 997 mSDsCounter, 0 mSdLazyCounter, 2097 mSolverCounterSat, 564 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1171 SdHoareTripleChecker+Valid, 1098 SdHoareTripleChecker+Invalid, 2661 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 564 IncrementalHoareTripleChecker+Valid, 2097 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.1s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:27,281 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [1171 Valid, 1098 Invalid, 2661 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [564 Valid, 2097 Invalid, 0 Unknown, 0 Unchecked, 1.1s Time] [2024-11-18 14:22:27,282 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1438 states. [2024-11-18 14:22:27,343 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1438 to 1335. [2024-11-18 14:22:27,345 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1335 states, 993 states have (on average 1.1117824773413898) internal successors, (1104), 1039 states have internal predecessors, (1104), 181 states have call successors, (181), 161 states have call predecessors, (181), 160 states have return successors, (225), 164 states have call predecessors, (225), 181 states have call successors, (225) [2024-11-18 14:22:27,348 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1335 states to 1335 states and 1510 transitions. [2024-11-18 14:22:27,350 INFO L78 Accepts]: Start accepts. Automaton has 1335 states and 1510 transitions. Word has length 215 [2024-11-18 14:22:27,350 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:27,350 INFO L471 AbstractCegarLoop]: Abstraction has 1335 states and 1510 transitions. [2024-11-18 14:22:27,350 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 25 states have (on average 9.24) internal successors, (231), 22 states have internal predecessors, (231), 10 states have call successors, (39), 5 states have call predecessors, (39), 11 states have return successors, (45), 11 states have call predecessors, (45), 10 states have call successors, (45) [2024-11-18 14:22:27,350 INFO L276 IsEmpty]: Start isEmpty. Operand 1335 states and 1510 transitions. [2024-11-18 14:22:27,353 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 236 [2024-11-18 14:22:27,353 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:27,354 INFO L215 NwaCegarLoop]: trace histogram [7, 7, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:27,369 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-18 14:22:27,555 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-18 14:22:27,556 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:27,556 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:27,557 INFO L85 PathProgramCache]: Analyzing trace with hash -1994411691, now seen corresponding path program 1 times [2024-11-18 14:22:27,557 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:27,557 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [957922663] [2024-11-18 14:22:27,557 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:27,557 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:27,596 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:27,777 INFO L134 CoverageAnalysis]: Checked inductivity of 275 backedges. 91 proven. 73 refuted. 0 times theorem prover too weak. 111 trivial. 0 not checked. [2024-11-18 14:22:27,778 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:27,778 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [957922663] [2024-11-18 14:22:27,778 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [957922663] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:27,778 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [71149065] [2024-11-18 14:22:27,778 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:27,778 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:27,778 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:27,780 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:27,783 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-18 14:22:27,894 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:27,899 INFO L255 TraceCheckSpWp]: Trace formula consists of 661 conjuncts, 12 conjuncts are in the unsatisfiable core [2024-11-18 14:22:27,907 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:28,085 INFO L134 CoverageAnalysis]: Checked inductivity of 275 backedges. 206 proven. 11 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2024-11-18 14:22:28,086 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:28,569 INFO L134 CoverageAnalysis]: Checked inductivity of 275 backedges. 101 proven. 62 refuted. 0 times theorem prover too weak. 112 trivial. 0 not checked. [2024-11-18 14:22:28,569 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [71149065] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:28,569 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:28,570 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 8, 8] total 23 [2024-11-18 14:22:28,570 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1159172971] [2024-11-18 14:22:28,570 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:28,570 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-11-18 14:22:28,571 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:28,571 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-11-18 14:22:28,572 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=81, Invalid=425, Unknown=0, NotChecked=0, Total=506 [2024-11-18 14:22:28,572 INFO L87 Difference]: Start difference. First operand 1335 states and 1510 transitions. Second operand has 23 states, 23 states have (on average 11.91304347826087) internal successors, (274), 20 states have internal predecessors, (274), 9 states have call successors, (49), 5 states have call predecessors, (49), 14 states have return successors, (51), 13 states have call predecessors, (51), 9 states have call successors, (51) [2024-11-18 14:22:29,356 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:29,356 INFO L93 Difference]: Finished difference Result 2616 states and 2984 transitions. [2024-11-18 14:22:29,356 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-11-18 14:22:29,357 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 23 states have (on average 11.91304347826087) internal successors, (274), 20 states have internal predecessors, (274), 9 states have call successors, (49), 5 states have call predecessors, (49), 14 states have return successors, (51), 13 states have call predecessors, (51), 9 states have call successors, (51) Word has length 235 [2024-11-18 14:22:29,357 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:29,363 INFO L225 Difference]: With dead ends: 2616 [2024-11-18 14:22:29,363 INFO L226 Difference]: Without dead ends: 1395 [2024-11-18 14:22:29,366 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 505 GetRequests, 468 SyntacticMatches, 1 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 213 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=299, Invalid=1107, Unknown=0, NotChecked=0, Total=1406 [2024-11-18 14:22:29,367 INFO L432 NwaCegarLoop]: 123 mSDtfsCounter, 505 mSDsluCounter, 732 mSDsCounter, 0 mSdLazyCounter, 687 mSolverCounterSat, 189 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 509 SdHoareTripleChecker+Valid, 855 SdHoareTripleChecker+Invalid, 876 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 189 IncrementalHoareTripleChecker+Valid, 687 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:29,367 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [509 Valid, 855 Invalid, 876 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [189 Valid, 687 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-18 14:22:29,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1395 states. [2024-11-18 14:22:29,437 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1395 to 1365. [2024-11-18 14:22:29,439 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1365 states, 1013 states have (on average 1.1056268509378084) internal successors, (1120), 1059 states have internal predecessors, (1120), 181 states have call successors, (181), 171 states have call predecessors, (181), 170 states have return successors, (225), 164 states have call predecessors, (225), 181 states have call successors, (225) [2024-11-18 14:22:29,476 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1365 states to 1365 states and 1526 transitions. [2024-11-18 14:22:29,478 INFO L78 Accepts]: Start accepts. Automaton has 1365 states and 1526 transitions. Word has length 235 [2024-11-18 14:22:29,478 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:29,478 INFO L471 AbstractCegarLoop]: Abstraction has 1365 states and 1526 transitions. [2024-11-18 14:22:29,478 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 23 states have (on average 11.91304347826087) internal successors, (274), 20 states have internal predecessors, (274), 9 states have call successors, (49), 5 states have call predecessors, (49), 14 states have return successors, (51), 13 states have call predecessors, (51), 9 states have call successors, (51) [2024-11-18 14:22:29,478 INFO L276 IsEmpty]: Start isEmpty. Operand 1365 states and 1526 transitions. [2024-11-18 14:22:29,482 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 237 [2024-11-18 14:22:29,482 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:29,482 INFO L215 NwaCegarLoop]: trace histogram [7, 7, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:29,500 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-18 14:22:29,682 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:29,683 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:29,683 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:29,683 INFO L85 PathProgramCache]: Analyzing trace with hash 213775524, now seen corresponding path program 1 times [2024-11-18 14:22:29,683 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:29,683 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1165147204] [2024-11-18 14:22:29,683 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:29,684 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:29,726 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:30,320 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 99 proven. 42 refuted. 0 times theorem prover too weak. 135 trivial. 0 not checked. [2024-11-18 14:22:30,320 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:30,321 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1165147204] [2024-11-18 14:22:30,321 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1165147204] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:30,321 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1594776737] [2024-11-18 14:22:30,321 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:30,321 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:30,321 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:30,322 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:30,325 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-18 14:22:30,467 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:30,469 INFO L255 TraceCheckSpWp]: Trace formula consists of 661 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-18 14:22:30,474 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:30,805 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 147 proven. 26 refuted. 0 times theorem prover too weak. 103 trivial. 0 not checked. [2024-11-18 14:22:30,806 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:31,793 INFO L134 CoverageAnalysis]: Checked inductivity of 276 backedges. 103 proven. 45 refuted. 0 times theorem prover too weak. 128 trivial. 0 not checked. [2024-11-18 14:22:31,793 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1594776737] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:31,793 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:31,793 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 8, 13] total 22 [2024-11-18 14:22:31,793 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1952171104] [2024-11-18 14:22:31,793 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:31,794 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2024-11-18 14:22:31,794 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:31,795 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2024-11-18 14:22:31,795 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=122, Invalid=340, Unknown=0, NotChecked=0, Total=462 [2024-11-18 14:22:31,795 INFO L87 Difference]: Start difference. First operand 1365 states and 1526 transitions. Second operand has 22 states, 22 states have (on average 11.772727272727273) internal successors, (259), 21 states have internal predecessors, (259), 15 states have call successors, (51), 8 states have call predecessors, (51), 14 states have return successors, (52), 15 states have call predecessors, (52), 15 states have call successors, (52) [2024-11-18 14:22:33,126 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:33,126 INFO L93 Difference]: Finished difference Result 2638 states and 3007 transitions. [2024-11-18 14:22:33,127 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 22 states. [2024-11-18 14:22:33,127 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 22 states have (on average 11.772727272727273) internal successors, (259), 21 states have internal predecessors, (259), 15 states have call successors, (51), 8 states have call predecessors, (51), 14 states have return successors, (52), 15 states have call predecessors, (52), 15 states have call successors, (52) Word has length 236 [2024-11-18 14:22:33,128 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:33,134 INFO L225 Difference]: With dead ends: 2638 [2024-11-18 14:22:33,134 INFO L226 Difference]: Without dead ends: 1852 [2024-11-18 14:22:33,136 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 511 GetRequests, 467 SyntacticMatches, 8 SemanticMatches, 36 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 355 ImplicationChecksByTransitivity, 0.5s TimeCoverageRelationStatistics Valid=405, Invalid=1001, Unknown=0, NotChecked=0, Total=1406 [2024-11-18 14:22:33,137 INFO L432 NwaCegarLoop]: 152 mSDtfsCounter, 689 mSDsluCounter, 585 mSDsCounter, 0 mSdLazyCounter, 1164 mSolverCounterSat, 284 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 692 SdHoareTripleChecker+Valid, 737 SdHoareTripleChecker+Invalid, 1448 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 284 IncrementalHoareTripleChecker+Valid, 1164 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:33,137 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [692 Valid, 737 Invalid, 1448 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [284 Valid, 1164 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2024-11-18 14:22:33,138 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1852 states. [2024-11-18 14:22:33,221 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1852 to 1696. [2024-11-18 14:22:33,222 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1696 states, 1260 states have (on average 1.1007936507936509) internal successors, (1387), 1310 states have internal predecessors, (1387), 227 states have call successors, (227), 214 states have call predecessors, (227), 208 states have return successors, (265), 207 states have call predecessors, (265), 227 states have call successors, (265) [2024-11-18 14:22:33,225 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1696 states to 1696 states and 1879 transitions. [2024-11-18 14:22:33,227 INFO L78 Accepts]: Start accepts. Automaton has 1696 states and 1879 transitions. Word has length 236 [2024-11-18 14:22:33,227 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:33,227 INFO L471 AbstractCegarLoop]: Abstraction has 1696 states and 1879 transitions. [2024-11-18 14:22:33,228 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 22 states have (on average 11.772727272727273) internal successors, (259), 21 states have internal predecessors, (259), 15 states have call successors, (51), 8 states have call predecessors, (51), 14 states have return successors, (52), 15 states have call predecessors, (52), 15 states have call successors, (52) [2024-11-18 14:22:33,228 INFO L276 IsEmpty]: Start isEmpty. Operand 1696 states and 1879 transitions. [2024-11-18 14:22:33,232 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 292 [2024-11-18 14:22:33,232 INFO L207 NwaCegarLoop]: Found error trace [2024-11-18 14:22:33,232 INFO L215 NwaCegarLoop]: trace histogram [9, 9, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:33,246 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-18 14:22:33,432 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable12,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:33,433 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-18 14:22:33,433 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-18 14:22:33,433 INFO L85 PathProgramCache]: Analyzing trace with hash -1228071505, now seen corresponding path program 1 times [2024-11-18 14:22:33,433 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-18 14:22:33,433 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [664879654] [2024-11-18 14:22:33,433 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:33,434 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-18 14:22:33,465 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:33,712 INFO L134 CoverageAnalysis]: Checked inductivity of 469 backedges. 128 proven. 91 refuted. 0 times theorem prover too weak. 250 trivial. 0 not checked. [2024-11-18 14:22:33,712 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-18 14:22:33,712 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [664879654] [2024-11-18 14:22:33,712 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [664879654] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-18 14:22:33,712 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1837819309] [2024-11-18 14:22:33,712 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-18 14:22:33,713 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-18 14:22:33,713 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-18 14:22:33,714 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-18 14:22:33,716 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-18 14:22:33,837 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-18 14:22:33,844 INFO L255 TraceCheckSpWp]: Trace formula consists of 793 conjuncts, 30 conjuncts are in the unsatisfiable core [2024-11-18 14:22:33,848 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-18 14:22:34,090 INFO L134 CoverageAnalysis]: Checked inductivity of 469 backedges. 169 proven. 89 refuted. 0 times theorem prover too weak. 211 trivial. 0 not checked. [2024-11-18 14:22:34,090 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-18 14:22:34,682 INFO L134 CoverageAnalysis]: Checked inductivity of 469 backedges. 102 proven. 136 refuted. 0 times theorem prover too weak. 231 trivial. 0 not checked. [2024-11-18 14:22:34,683 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1837819309] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-18 14:22:34,683 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-18 14:22:34,683 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [9, 11, 16] total 24 [2024-11-18 14:22:34,683 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2082574376] [2024-11-18 14:22:34,683 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-18 14:22:34,684 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 24 states [2024-11-18 14:22:34,684 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-18 14:22:34,685 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 24 interpolants. [2024-11-18 14:22:34,686 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=126, Invalid=426, Unknown=0, NotChecked=0, Total=552 [2024-11-18 14:22:34,687 INFO L87 Difference]: Start difference. First operand 1696 states and 1879 transitions. Second operand has 24 states, 24 states have (on average 13.0) internal successors, (312), 23 states have internal predecessors, (312), 16 states have call successors, (62), 10 states have call predecessors, (62), 17 states have return successors, (66), 16 states have call predecessors, (66), 16 states have call successors, (66) [2024-11-18 14:22:35,641 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-18 14:22:35,642 INFO L93 Difference]: Finished difference Result 4044 states and 4537 transitions. [2024-11-18 14:22:35,642 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2024-11-18 14:22:35,642 INFO L78 Accepts]: Start accepts. Automaton has has 24 states, 24 states have (on average 13.0) internal successors, (312), 23 states have internal predecessors, (312), 16 states have call successors, (62), 10 states have call predecessors, (62), 17 states have return successors, (66), 16 states have call predecessors, (66), 16 states have call successors, (66) Word has length 291 [2024-11-18 14:22:35,643 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-18 14:22:35,645 INFO L225 Difference]: With dead ends: 4044 [2024-11-18 14:22:35,645 INFO L226 Difference]: Without dead ends: 0 [2024-11-18 14:22:35,651 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 607 GetRequests, 562 SyntacticMatches, 10 SemanticMatches, 35 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 306 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=343, Invalid=989, Unknown=0, NotChecked=0, Total=1332 [2024-11-18 14:22:35,651 INFO L432 NwaCegarLoop]: 148 mSDtfsCounter, 598 mSDsluCounter, 901 mSDsCounter, 0 mSdLazyCounter, 1364 mSolverCounterSat, 288 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 603 SdHoareTripleChecker+Valid, 1049 SdHoareTripleChecker+Invalid, 1652 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 288 IncrementalHoareTripleChecker+Valid, 1364 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-18 14:22:35,652 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [603 Valid, 1049 Invalid, 1652 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [288 Valid, 1364 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-18 14:22:35,652 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-18 14:22:35,652 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-18 14:22:35,652 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-18 14:22:35,652 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-18 14:22:35,653 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 291 [2024-11-18 14:22:35,653 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-18 14:22:35,654 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-18 14:22:35,654 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 24 states, 24 states have (on average 13.0) internal successors, (312), 23 states have internal predecessors, (312), 16 states have call successors, (62), 10 states have call predecessors, (62), 17 states have return successors, (66), 16 states have call predecessors, (66), 16 states have call successors, (66) [2024-11-18 14:22:35,654 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-18 14:22:35,654 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-18 14:22:35,656 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-18 14:22:35,675 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2024-11-18 14:22:35,857 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2024-11-18 14:22:35,860 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-18 14:22:35,862 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-18 14:22:53,321 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-18 14:22:53,340 WARN L156 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (let ((.cse0 (< ~switchedOnBeforeTS~0 1)) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (= ~pumpRunning~0 1))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (and (= 2 ~waterLevel~0) (not (= 0 ~systemActive~0))) (= 1 ~systemActive~0)) (or (< 0 ~waterLevel~0) .cse0 .cse1 .cse2))) Eliminated clause: (and (or (and (= 2 ~waterLevel~0) (not (= 0 ~systemActive~0))) (= 1 ~systemActive~0)) (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (< ~switchedOnBeforeTS~0 1)) (.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (= ~pumpRunning~0 1))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or (< 0 ~waterLevel~0) .cse0 .cse1 .cse2))))) [2024-11-18 14:22:53,346 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:53,357 WARN L156 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse0 (= 1 ~systemActive~0)) (.cse5 (= |old(~methaneLevelCritical~0)| 0)) (.cse4 (= 0 ~systemActive~0)) (.cse6 (= ~methaneLevelCritical~0 0)) (.cse2 (= ~pumpRunning~0 1))) (and (let ((.cse1 (<= ~waterLevel~0 2)) (.cse3 (= ~pumpRunning~0 0))) (or (and .cse0 .cse1 .cse2) (and .cse3 .cse0 .cse1) (and .cse3 .cse4))) (or (not .cse5) .cse6 (not .cse0)) (or .cse5 (not .cse6) .cse4) (or .cse6 (not .cse2)))) Eliminated clause: (let ((.cse2 (= 1 ~systemActive~0)) (.cse3 (= 0 ~systemActive~0)) (.cse1 (= ~methaneLevelCritical~0 0)) (.cse5 (= ~pumpRunning~0 1))) (and (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse0 (= |old(~methaneLevelCritical~0)| 0))) (and (or (not .cse0) .cse1 (not .cse2)) (or .cse0 (not .cse1) .cse3)))) (let ((.cse4 (<= ~waterLevel~0 2)) (.cse6 (= ~pumpRunning~0 0))) (or (and .cse2 .cse4 .cse5) (and .cse6 .cse2 .cse4) (and .cse6 .cse3))) (or .cse1 (not .cse5)))) [2024-11-18 14:22:53,363 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:53,376 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse3 (= |old(~pumpRunning~0)| 1)) (.cse0 (= |old(~pumpRunning~0)| 0))) (let ((.cse6 (not .cse0)) (.cse9 (not .cse3)) (.cse5 (< 1 |old(~waterLevel~0)|)) (.cse7 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse1 (= 0 ~systemActive~0)) (.cse8 (<= 1 ~switchedOnBeforeTS~0))) (and (let ((.cse2 (= 1 ~systemActive~0)) (.cse4 (<= |old(~waterLevel~0)| 2))) (or (and .cse0 .cse1) (and .cse2 .cse3 .cse4) (and .cse2 .cse0 .cse4))) (or .cse5 .cse6 .cse7 .cse1 .cse8) (or .cse6 (= ~pumpRunning~0 0)) (or (not (= |old(~waterLevel~0)| 1)) .cse7 .cse9 .cse8) (or .cse9 (= ~pumpRunning~0 1)) (= |old(~waterLevel~0)| ~waterLevel~0) (or .cse5 .cse7 (not (= ~methaneLevelCritical~0 0)) .cse1 .cse8)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int)) (let ((.cse9 (= |old(~pumpRunning~0)| 1)) (.cse7 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse1 (< 0 ~switchedOnBeforeTS~0)) (.cse3 (< 1 ~waterLevel~0)) (.cse5 (not .cse7)) (.cse2 (not .cse9)) (.cse4 (= 0 ~systemActive~0))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2) (or .cse0 .cse1 .cse3 (not (= ~methaneLevelCritical~0 0)) .cse4) (or .cse5 .cse0 .cse1 .cse3 .cse4) (or .cse5 (= ~pumpRunning~0 0)) (or .cse2 (= ~pumpRunning~0 1)) (let ((.cse6 (= 1 ~systemActive~0)) (.cse8 (<= ~waterLevel~0 2))) (or (and .cse6 .cse7 .cse8) (and .cse6 .cse9 .cse8) (and .cse7 .cse4))))))) [2024-11-18 14:22:53,409 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:53,414 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__highWaterSensor contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1)) (.cse1 (= ~pumpRunning~0 0))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse3 (= 1 ~systemActive~0))) (or (and .cse3 .cse0 (<= ~waterLevel~0 2)) (and (<= ~waterLevel~0 1) .cse3 .cse2 (<= 1 ~switchedOnBeforeTS~0)))) (or .cse1 (= ~methaneLevelCritical~0 0)))) Eliminated clause: (let ((.cse1 (= ~pumpRunning~0 0))) (and (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse3 (= 1 ~systemActive~0))) (or (and .cse3 .cse0 (<= ~waterLevel~0 2)) (and (<= ~waterLevel~0 1) .cse3 .cse2 (<= 1 ~switchedOnBeforeTS~0))))))) (or .cse1 (= ~methaneLevelCritical~0 0)))) [2024-11-18 14:22:53,416 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:53,425 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse0 (= |old(~waterLevel~0)| 2)) (.cse2 (= 1 ~systemActive~0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse4 (= ~pumpRunning~0 1)) (.cse3 (<= |old(~waterLevel~0)| 1)) (.cse5 (= ~pumpRunning~0 0))) (or (and .cse1 .cse2 .cse3 (<= 1 ~switchedOnBeforeTS~0) .cse4) (and .cse5 .cse2 .cse0) (and .cse1 .cse2 .cse0 .cse4) (and .cse5 .cse2 .cse3) (and .cse5 (= 0 ~systemActive~0)))) (or .cse6 (= ~waterLevel~0 1)) (or (not .cse2) .cse6))) Eliminated clause: (exists ((|old(~waterLevel~0)| Int)) (let ((.cse0 (= |old(~waterLevel~0)| 2)) (.cse2 (= 1 ~systemActive~0)) (.cse6 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or (= 2 ~waterLevel~0) (not .cse0)) (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse4 (= ~pumpRunning~0 1)) (.cse3 (<= |old(~waterLevel~0)| 1)) (.cse5 (= ~pumpRunning~0 0))) (or (and .cse1 .cse2 .cse3 (<= 1 ~switchedOnBeforeTS~0) .cse4) (and .cse5 .cse2 .cse0) (and .cse1 .cse2 .cse0 .cse4) (and .cse5 .cse2 .cse3) (and .cse5 (= 0 ~systemActive~0)))) (or .cse6 (= ~waterLevel~0 1)) (or (not .cse2) .cse6)))) [2024-11-18 14:22:53,431 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:53,436 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1)) (.cse1 (= ~pumpRunning~0 0))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse3 (= 1 ~systemActive~0))) (or (and .cse3 .cse0 (<= ~waterLevel~0 2)) (and (<= ~waterLevel~0 1) .cse3 .cse2 (<= 1 ~switchedOnBeforeTS~0)))) (or .cse1 (= ~methaneLevelCritical~0 0)))) Eliminated clause: (let ((.cse1 (= ~pumpRunning~0 0))) (and (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse2 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) .cse1) (or (not .cse2) (= ~pumpRunning~0 1)) (let ((.cse3 (= 1 ~systemActive~0))) (or (and .cse3 .cse0 (<= ~waterLevel~0 2)) (and (<= ~waterLevel~0 1) .cse3 .cse2 (<= 1 ~switchedOnBeforeTS~0))))))) (or .cse1 (= ~methaneLevelCritical~0 0)))) [2024-11-18 14:22:53,439 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-18 14:22:53,452 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 18.11 02:22:53 BoogieIcfgContainer [2024-11-18 14:22:53,456 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-18 14:22:53,457 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-18 14:22:53,457 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-18 14:22:53,457 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-18 14:22:53,457 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 18.11 02:22:20" (3/4) ... [2024-11-18 14:22:53,459 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-18 14:22:53,462 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-18 14:22:53,462 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-18 14:22:53,462 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-18 14:22:53,462 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-18 14:22:53,462 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-18 14:22:53,463 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2024-11-18 14:22:53,463 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-18 14:22:53,463 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-18 14:22:53,463 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-18 14:22:53,463 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-18 14:22:53,468 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 21 nodes and edges [2024-11-18 14:22:53,468 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-18 14:22:53,468 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-18 14:22:53,469 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:22:53,469 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-18 14:22:53,562 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-18 14:22:53,562 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-18 14:22:53,563 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-18 14:22:53,563 INFO L158 Benchmark]: Toolchain (without parser) took 34231.19ms. Allocated memory was 144.7MB in the beginning and 648.0MB in the end (delta: 503.3MB). Free memory was 73.8MB in the beginning and 565.5MB in the end (delta: -491.7MB). Peak memory consumption was 13.7MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,564 INFO L158 Benchmark]: CDTParser took 0.09ms. Allocated memory is still 144.7MB. Free memory was 110.2MB in the beginning and 110.0MB in the end (delta: 139.9kB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-18 14:22:53,564 INFO L158 Benchmark]: CACSL2BoogieTranslator took 390.77ms. Allocated memory is still 237.0MB. Free memory was 208.7MB in the beginning and 189.7MB in the end (delta: 18.9MB). Peak memory consumption was 21.2MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,564 INFO L158 Benchmark]: Boogie Procedure Inliner took 38.98ms. Allocated memory is still 237.0MB. Free memory was 189.7MB in the beginning and 187.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,564 INFO L158 Benchmark]: Boogie Preprocessor took 35.16ms. Allocated memory is still 237.0MB. Free memory was 187.6MB in the beginning and 185.5MB in the end (delta: 2.1MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,565 INFO L158 Benchmark]: RCFGBuilder took 594.81ms. Allocated memory is still 237.0MB. Free memory was 184.5MB in the beginning and 164.5MB in the end (delta: 19.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,565 INFO L158 Benchmark]: TraceAbstraction took 33046.70ms. Allocated memory was 237.0MB in the beginning and 648.0MB in the end (delta: 411.0MB). Free memory was 163.5MB in the beginning and 574.9MB in the end (delta: -411.4MB). Peak memory consumption was 354.0MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,565 INFO L158 Benchmark]: Witness Printer took 106.41ms. Allocated memory is still 648.0MB. Free memory was 574.9MB in the beginning and 565.5MB in the end (delta: 9.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-18 14:22:53,566 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.09ms. Allocated memory is still 144.7MB. Free memory was 110.2MB in the beginning and 110.0MB in the end (delta: 139.9kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 390.77ms. Allocated memory is still 237.0MB. Free memory was 208.7MB in the beginning and 189.7MB in the end (delta: 18.9MB). Peak memory consumption was 21.2MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 38.98ms. Allocated memory is still 237.0MB. Free memory was 189.7MB in the beginning and 187.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 35.16ms. Allocated memory is still 237.0MB. Free memory was 187.6MB in the beginning and 185.5MB in the end (delta: 2.1MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * RCFGBuilder took 594.81ms. Allocated memory is still 237.0MB. Free memory was 184.5MB in the beginning and 164.5MB in the end (delta: 19.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * TraceAbstraction took 33046.70ms. Allocated memory was 237.0MB in the beginning and 648.0MB in the end (delta: 411.0MB). Free memory was 163.5MB in the beginning and 574.9MB in the end (delta: -411.4MB). Peak memory consumption was 354.0MB. Max. memory is 16.1GB. * Witness Printer took 106.41ms. Allocated memory is still 648.0MB. Free memory was 574.9MB in the beginning and 565.5MB in the end (delta: 9.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [49] - GenericResultAtLocation [Line: 101]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [101] - GenericResultAtLocation [Line: 139]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [139] - GenericResultAtLocation [Line: 148]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [148] - GenericResultAtLocation [Line: 220]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [220] - GenericResultAtLocation [Line: 318]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [318] - GenericResultAtLocation [Line: 583]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [583] - GenericResultAtLocation [Line: 686]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [686] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 144]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 117 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 15.4s, OverallIterations: 14, TraceHistogramMax: 9, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 6.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 4392 SdHoareTripleChecker+Valid, 4.2s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 4362 mSDsluCounter, 8695 SdHoareTripleChecker+Invalid, 3.4s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 6562 mSDsCounter, 1619 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 6312 IncrementalHoareTripleChecker+Invalid, 7931 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1619 mSolverCounterUnsat, 2133 mSDtfsCounter, 6312 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 2437 GetRequests, 2183 SyntacticMatches, 26 SemanticMatches, 228 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2039 ImplicationChecksByTransitivity, 2.3s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1696occurred in iteration=13, InterpolantAutomatonStates: 164, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.7s AutomataMinimizationTime, 14 MinimizatonAttempts, 532 StatesRemovedByMinimization, 8 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 5.8s InterpolantComputationTime, 2724 NumberOfCodeBlocks, 2724 NumberOfCodeBlocksAsserted, 19 NumberOfCheckSat, 3798 ConstructedInterpolants, 0 QuantifiedInterpolants, 8286 SizeOfPredicates, 5 NumberOfNonLiveVariables, 3106 ConjunctsInSsa, 81 ConjunctsInUnsatCore, 24 InterpolantComputations, 9 PerfectInterpolantSequences, 3224/3921 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 163]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 164]: Loop Invariant Derived loop invariant: ((((((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (1 == systemActive)) && (splverifierCounter == 0)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (splverifierCounter == 0)) && (0 == systemActive))) || ((((((methaneLevelCritical == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (splverifierCounter == 0))) - InvariantResult [Line: 232]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 466]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (((2 == waterLevel) && (0 != systemActive)) || (1 == systemActive)) Ensures: (((pumpRunning == 0) && (((2 == waterLevel) && (0 != systemActive)) || (1 == systemActive))) && ((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 356]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) Ensures: (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) || (((((methaneLevelCritical == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) && (((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 610]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: ((((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) || ((pumpRunning == 0) && (0 == systemActive))) && ((methaneLevelCritical == 0) || (pumpRunning != 1))) Ensures: ((((((methaneLevelCritical != 0) || (pumpRunning != 1)) && (((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2))) || ((pumpRunning == 0) && (0 == systemActive)))) && (((\old(methaneLevelCritical) != 0) || (1 != systemActive)) || (methaneLevelCritical != 0))) && (((methaneLevelCritical == 0) || (1 != systemActive)) || (\old(methaneLevelCritical) == 0))) && ((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (head == \old(head)))) - ProcedureContractResult [Line: 222]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 329]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((((((((((\old(switchedOnBeforeTS) < 1) || (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS))) || (0 < \old(waterLevel))) || (methaneLevelCritical != 0)) || (((((1 == systemActive) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (\old(pumpRunning) != 1)) && (((((((pumpRunning == 0) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS)) || (methaneLevelCritical == 0)) || (((pumpRunning == 0) && (\old(waterLevel) == ((long long) waterLevel + 1))) && (1 <= switchedOnBeforeTS))) || (\old(pumpRunning) != 1))) && ((((\old(pumpRunning) == 0) && (0 == systemActive)) || (((1 == systemActive) && (\old(pumpRunning) == 1)) && (\old(waterLevel) <= 2))) || (((1 == systemActive) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 2)))) && (((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || (((2 == waterLevel) && (\old(waterLevel) == 2)) && (pumpRunning == 1)))) && ((pumpRunning == 0) || (0 != systemActive))) && ((((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS)) || (((\old(waterLevel) == ((long long) waterLevel + 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (methaneLevelCritical != 0)) || (((((1 == systemActive) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (\old(waterLevel) == ((long long) waterLevel + 1))) && (1 <= switchedOnBeforeTS))) || (\old(pumpRunning) != 1))) && (((\old(pumpRunning) != 0) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel))) || (methaneLevelCritical == 0))) && (((((((pumpRunning == 0) && (waterLevel <= 0)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS)) || (methaneLevelCritical == 0)) || (0 < \old(waterLevel))) || (\old(pumpRunning) != 1))) && ((((cleanupTimeShifts == \old(cleanupTimeShifts)) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 364]: Procedure Contract for processEnvironment__wrappee__highWaterSensor Derived contract for procedure processEnvironment__wrappee__highWaterSensor. Requires: ((pumpRunning == 0) || (methaneLevelCritical == 0)) Ensures: ((((((\old(pumpRunning) != 1) || (pumpRunning == 1)) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || ((2 == waterLevel) && (pumpRunning == 1)))) && ((((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) || ((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 1)) && (1 <= switchedOnBeforeTS)))) && ((pumpRunning == 0) || (methaneLevelCritical == 0))) && ((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 598]: Procedure Contract for waterRise Derived contract for procedure waterRise. Ensures: ((((((2 == waterLevel) || (\old(waterLevel) != 2)) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && ((1 != systemActive) || (waterLevel < ((long long) \old(waterLevel) + 2)))) && (((((((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(waterLevel) <= 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) == 2))) || ((((methaneLevelCritical == 0) && (1 == systemActive)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (1 == systemActive)) && (\old(waterLevel) <= 1))) || ((pumpRunning == 0) && (0 == systemActive)))) && ((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 390]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Requires: ((pumpRunning == 0) || (methaneLevelCritical == 0)) Ensures: ((((((methaneLevelCritical == 0) || ((pumpRunning == 0) && (\old(pumpRunning) == 0))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (2 == waterLevel))) && ((pumpRunning == 0) || (pumpRunning == 1))) && ((((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel <= 2)) || ((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 1)) && (1 <= switchedOnBeforeTS)))) && ((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 485]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: (((((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 0))) || ((pumpRunning == 0) && (0 == systemActive))) Ensures: (((((pumpRunning != 0) || (\result == 0)) && ((\result == 1) || (pumpRunning != 1))) && (((((((1 == systemActive) && (waterLevel <= 2)) && (pumpRunning == 1)) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || (((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 0))) || ((pumpRunning == 0) && (0 == systemActive)))) && (((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) - ProcedureContractResult [Line: 474]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: ((((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || ((((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) Ensures: (((methaneLevelCritical == \result) && ((((((1 == systemActive) && (waterLevel == 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1)) || ((((1 == systemActive) && (waterLevel <= 0)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)))) && (((((((switchedOnBeforeTS == \old(switchedOnBeforeTS)) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (head == \old(head)))) RESULT: Ultimate proved your program to be correct! [2024-11-18 14:22:53,612 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE