./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec2_product48.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 803cd42f Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec2_product48.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 797436b26f0180d1dd4048b2036765c1f76ffc9f34d72e35837e9efcc5780486 --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-803cd42-m [2024-11-22 02:03:55,597 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-22 02:03:55,650 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-22 02:03:55,656 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-22 02:03:55,657 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-22 02:03:55,691 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-22 02:03:55,707 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-22 02:03:55,708 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-22 02:03:55,708 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-22 02:03:55,709 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-22 02:03:55,709 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-22 02:03:55,709 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-22 02:03:55,710 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-22 02:03:55,710 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-22 02:03:55,710 INFO L153 SettingsManager]: * Use SBE=true [2024-11-22 02:03:55,711 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-22 02:03:55,711 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-22 02:03:55,711 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-22 02:03:55,711 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-22 02:03:55,712 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-22 02:03:55,712 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-22 02:03:55,712 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-22 02:03:55,712 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-22 02:03:55,713 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-22 02:03:55,713 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-22 02:03:55,713 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-22 02:03:55,713 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-22 02:03:55,714 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-22 02:03:55,714 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-22 02:03:55,714 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-22 02:03:55,714 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-22 02:03:55,714 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-22 02:03:55,715 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-22 02:03:55,715 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-22 02:03:55,715 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-22 02:03:55,715 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-22 02:03:55,715 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-22 02:03:55,716 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-22 02:03:55,716 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-22 02:03:55,716 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-22 02:03:55,716 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-22 02:03:55,716 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-22 02:03:55,717 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 797436b26f0180d1dd4048b2036765c1f76ffc9f34d72e35837e9efcc5780486 [2024-11-22 02:03:55,897 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-22 02:03:55,920 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-22 02:03:55,922 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-22 02:03:55,922 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-22 02:03:55,923 INFO L274 PluginConnector]: CDTParser initialized [2024-11-22 02:03:55,924 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec2_product48.cil.c [2024-11-22 02:03:57,143 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-22 02:03:57,323 INFO L384 CDTParser]: Found 1 translation units. [2024-11-22 02:03:57,323 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec2_product48.cil.c [2024-11-22 02:03:57,351 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/a21b7f867/92d2fe47a48e4706b66a81edcd1523be/FLAG86b4f1513 [2024-11-22 02:03:57,361 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/a21b7f867/92d2fe47a48e4706b66a81edcd1523be [2024-11-22 02:03:57,363 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-22 02:03:57,364 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-22 02:03:57,365 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-22 02:03:57,365 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-22 02:03:57,369 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-22 02:03:57,370 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,370 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@1912a6fc and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57, skipping insertion in model container [2024-11-22 02:03:57,370 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,414 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-22 02:03:57,664 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec2_product48.cil.c[17766,17779] [2024-11-22 02:03:57,674 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-22 02:03:57,687 INFO L200 MainTranslator]: Completed pre-run [2024-11-22 02:03:57,696 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2024-11-22 02:03:57,698 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [150] [2024-11-22 02:03:57,699 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [188] [2024-11-22 02:03:57,699 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [261] [2024-11-22 02:03:57,699 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [484] [2024-11-22 02:03:57,699 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [524] [2024-11-22 02:03:57,700 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [890] [2024-11-22 02:03:57,700 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [899] [2024-11-22 02:03:57,774 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec2_product48.cil.c[17766,17779] [2024-11-22 02:03:57,781 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-22 02:03:57,805 INFO L204 MainTranslator]: Completed translation [2024-11-22 02:03:57,806 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57 WrapperNode [2024-11-22 02:03:57,806 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-22 02:03:57,807 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-22 02:03:57,807 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-22 02:03:57,807 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-22 02:03:57,812 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,827 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,856 INFO L138 Inliner]: procedures = 57, calls = 103, calls flagged for inlining = 23, calls inlined = 20, statements flattened = 199 [2024-11-22 02:03:57,857 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-22 02:03:57,857 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-22 02:03:57,857 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-22 02:03:57,857 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-22 02:03:57,866 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,866 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,869 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,888 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-22 02:03:57,889 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,889 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,893 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,896 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,897 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,898 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,902 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-22 02:03:57,903 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-22 02:03:57,903 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-22 02:03:57,903 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-22 02:03:57,904 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (1/1) ... [2024-11-22 02:03:57,911 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-22 02:03:57,921 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:03:57,938 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-22 02:03:57,941 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-22 02:03:57,984 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-22 02:03:57,985 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-22 02:03:57,985 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-22 02:03:57,985 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-22 02:03:57,985 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-22 02:03:57,985 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-22 02:03:57,985 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-22 02:03:57,986 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-22 02:03:57,986 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-22 02:03:57,986 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-22 02:03:57,986 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-22 02:03:57,987 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2024-11-22 02:03:57,987 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2024-11-22 02:03:57,987 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-22 02:03:57,987 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-22 02:03:57,987 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-22 02:03:57,987 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-22 02:03:57,988 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-22 02:03:57,988 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-22 02:03:57,988 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-22 02:03:57,989 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-22 02:03:57,989 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-22 02:03:58,069 INFO L238 CfgBuilder]: Building ICFG [2024-11-22 02:03:58,071 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-22 02:03:58,302 INFO L? ?]: Removed 41 outVars from TransFormulas that were not future-live. [2024-11-22 02:03:58,303 INFO L287 CfgBuilder]: Performing block encoding [2024-11-22 02:03:58,314 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-22 02:03:58,315 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-22 02:03:58,315 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 02:03:58 BoogieIcfgContainer [2024-11-22 02:03:58,315 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-22 02:03:58,318 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-22 02:03:58,318 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-22 02:03:58,321 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-22 02:03:58,322 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 22.11 02:03:57" (1/3) ... [2024-11-22 02:03:58,322 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1842e941 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.11 02:03:58, skipping insertion in model container [2024-11-22 02:03:58,322 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:03:57" (2/3) ... [2024-11-22 02:03:58,323 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@1842e941 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.11 02:03:58, skipping insertion in model container [2024-11-22 02:03:58,323 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 02:03:58" (3/3) ... [2024-11-22 02:03:58,325 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec2_product48.cil.c [2024-11-22 02:03:58,338 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-22 02:03:58,338 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-22 02:03:58,388 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-22 02:03:58,393 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2074f68, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-22 02:03:58,394 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-22 02:03:58,397 INFO L276 IsEmpty]: Start isEmpty. Operand has 103 states, 76 states have (on average 1.368421052631579) internal successors, (104), 85 states have internal predecessors, (104), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 13 states have call predecessors, (16), 16 states have call successors, (16) [2024-11-22 02:03:58,404 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-22 02:03:58,404 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:58,404 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:58,405 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:58,409 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:58,409 INFO L85 PathProgramCache]: Analyzing trace with hash 1420238352, now seen corresponding path program 1 times [2024-11-22 02:03:58,415 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:58,416 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1014427316] [2024-11-22 02:03:58,416 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:58,416 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:58,515 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:58,584 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-22 02:03:58,584 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:58,584 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1014427316] [2024-11-22 02:03:58,585 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1014427316] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:58,585 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:58,585 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-22 02:03:58,586 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1460877244] [2024-11-22 02:03:58,587 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:58,596 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-22 02:03:58,596 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:58,627 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-22 02:03:58,630 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-22 02:03:58,632 INFO L87 Difference]: Start difference. First operand has 103 states, 76 states have (on average 1.368421052631579) internal successors, (104), 85 states have internal predecessors, (104), 16 states have call successors, (16), 9 states have call predecessors, (16), 9 states have return successors, (16), 13 states have call predecessors, (16), 16 states have call successors, (16) Second operand has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:58,697 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:03:58,697 INFO L93 Difference]: Finished difference Result 197 states and 266 transitions. [2024-11-22 02:03:58,698 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-22 02:03:58,699 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25 [2024-11-22 02:03:58,700 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:03:58,710 INFO L225 Difference]: With dead ends: 197 [2024-11-22 02:03:58,711 INFO L226 Difference]: Without dead ends: 94 [2024-11-22 02:03:58,716 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-22 02:03:58,721 INFO L432 NwaCegarLoop]: 130 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 130 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:03:58,722 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 130 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:03:58,738 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 94 states. [2024-11-22 02:03:58,766 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 94 to 94. [2024-11-22 02:03:58,768 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 94 states, 69 states have (on average 1.3043478260869565) internal successors, (90), 77 states have internal predecessors, (90), 16 states have call successors, (16), 9 states have call predecessors, (16), 8 states have return successors, (15), 12 states have call predecessors, (15), 15 states have call successors, (15) [2024-11-22 02:03:58,770 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 94 states to 94 states and 121 transitions. [2024-11-22 02:03:58,774 INFO L78 Accepts]: Start accepts. Automaton has 94 states and 121 transitions. Word has length 25 [2024-11-22 02:03:58,775 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:03:58,775 INFO L471 AbstractCegarLoop]: Abstraction has 94 states and 121 transitions. [2024-11-22 02:03:58,775 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:58,776 INFO L276 IsEmpty]: Start isEmpty. Operand 94 states and 121 transitions. [2024-11-22 02:03:58,777 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 27 [2024-11-22 02:03:58,779 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:58,779 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:58,779 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-22 02:03:58,779 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:58,780 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:58,780 INFO L85 PathProgramCache]: Analyzing trace with hash -193757144, now seen corresponding path program 1 times [2024-11-22 02:03:58,780 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:58,781 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [220122122] [2024-11-22 02:03:58,781 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:58,781 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:58,802 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:58,886 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-22 02:03:58,887 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:58,887 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [220122122] [2024-11-22 02:03:58,887 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [220122122] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:58,887 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:58,888 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 02:03:58,888 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [732732284] [2024-11-22 02:03:58,889 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:58,890 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:03:58,893 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:58,894 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:03:58,894 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 02:03:58,894 INFO L87 Difference]: Start difference. First operand 94 states and 121 transitions. Second operand has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:58,917 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:03:58,917 INFO L93 Difference]: Finished difference Result 148 states and 190 transitions. [2024-11-22 02:03:58,918 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:03:58,918 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 26 [2024-11-22 02:03:58,919 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:03:58,920 INFO L225 Difference]: With dead ends: 148 [2024-11-22 02:03:58,920 INFO L226 Difference]: Without dead ends: 85 [2024-11-22 02:03:58,920 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 02:03:58,921 INFO L432 NwaCegarLoop]: 108 mSDtfsCounter, 17 mSDsluCounter, 86 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 21 SdHoareTripleChecker+Valid, 194 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:03:58,921 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [21 Valid, 194 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:03:58,922 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 85 states. [2024-11-22 02:03:58,932 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 85 to 85. [2024-11-22 02:03:58,933 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 85 states, 63 states have (on average 1.3174603174603174) internal successors, (83), 71 states have internal predecessors, (83), 13 states have call successors, (13), 8 states have call predecessors, (13), 8 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-22 02:03:58,934 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 85 states to 85 states and 109 transitions. [2024-11-22 02:03:58,934 INFO L78 Accepts]: Start accepts. Automaton has 85 states and 109 transitions. Word has length 26 [2024-11-22 02:03:58,934 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:03:58,934 INFO L471 AbstractCegarLoop]: Abstraction has 85 states and 109 transitions. [2024-11-22 02:03:58,934 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.333333333333333) internal successors, (22), 3 states have internal predecessors, (22), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:58,934 INFO L276 IsEmpty]: Start isEmpty. Operand 85 states and 109 transitions. [2024-11-22 02:03:58,938 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2024-11-22 02:03:58,938 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:58,938 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:58,939 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-22 02:03:58,939 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:58,939 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:58,939 INFO L85 PathProgramCache]: Analyzing trace with hash -150671396, now seen corresponding path program 1 times [2024-11-22 02:03:58,939 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:58,940 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [44187060] [2024-11-22 02:03:58,940 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:58,940 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:58,963 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:59,081 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-22 02:03:59,082 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:59,082 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [44187060] [2024-11-22 02:03:59,082 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [44187060] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:59,082 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:59,082 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-22 02:03:59,082 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1584680666] [2024-11-22 02:03:59,082 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:59,082 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-22 02:03:59,082 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:59,083 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-22 02:03:59,083 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=10, Invalid=20, Unknown=0, NotChecked=0, Total=30 [2024-11-22 02:03:59,083 INFO L87 Difference]: Start difference. First operand 85 states and 109 transitions. Second operand has 6 states, 6 states have (on average 4.666666666666667) internal successors, (28), 6 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:59,269 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:03:59,269 INFO L93 Difference]: Finished difference Result 280 states and 367 transitions. [2024-11-22 02:03:59,269 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-22 02:03:59,269 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.666666666666667) internal successors, (28), 6 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 31 [2024-11-22 02:03:59,269 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:03:59,271 INFO L225 Difference]: With dead ends: 280 [2024-11-22 02:03:59,274 INFO L226 Difference]: Without dead ends: 203 [2024-11-22 02:03:59,275 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 6 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=20, Invalid=36, Unknown=0, NotChecked=0, Total=56 [2024-11-22 02:03:59,276 INFO L432 NwaCegarLoop]: 122 mSDtfsCounter, 186 mSDsluCounter, 351 mSDsCounter, 0 mSdLazyCounter, 104 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 186 SdHoareTripleChecker+Valid, 473 SdHoareTripleChecker+Invalid, 107 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 104 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 02:03:59,276 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [186 Valid, 473 Invalid, 107 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 104 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 02:03:59,277 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 203 states. [2024-11-22 02:03:59,300 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 203 to 197. [2024-11-22 02:03:59,304 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 197 states, 144 states have (on average 1.3541666666666667) internal successors, (195), 162 states have internal predecessors, (195), 31 states have call successors, (31), 21 states have call predecessors, (31), 21 states have return successors, (32), 23 states have call predecessors, (32), 31 states have call successors, (32) [2024-11-22 02:03:59,306 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 197 states to 197 states and 258 transitions. [2024-11-22 02:03:59,306 INFO L78 Accepts]: Start accepts. Automaton has 197 states and 258 transitions. Word has length 31 [2024-11-22 02:03:59,306 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:03:59,307 INFO L471 AbstractCegarLoop]: Abstraction has 197 states and 258 transitions. [2024-11-22 02:03:59,307 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.666666666666667) internal successors, (28), 6 states have internal predecessors, (28), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:59,307 INFO L276 IsEmpty]: Start isEmpty. Operand 197 states and 258 transitions. [2024-11-22 02:03:59,308 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 35 [2024-11-22 02:03:59,309 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:59,309 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:59,309 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-22 02:03:59,309 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:59,310 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:59,310 INFO L85 PathProgramCache]: Analyzing trace with hash 153261204, now seen corresponding path program 1 times [2024-11-22 02:03:59,312 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:59,313 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [149437795] [2024-11-22 02:03:59,313 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:59,313 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:59,327 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:59,400 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-22 02:03:59,401 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:59,401 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [149437795] [2024-11-22 02:03:59,401 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [149437795] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:59,401 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:59,401 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 02:03:59,401 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1306171888] [2024-11-22 02:03:59,401 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:59,402 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 02:03:59,402 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:59,402 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 02:03:59,402 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 02:03:59,403 INFO L87 Difference]: Start difference. First operand 197 states and 258 transitions. Second operand has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:59,468 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:03:59,469 INFO L93 Difference]: Finished difference Result 474 states and 631 transitions. [2024-11-22 02:03:59,469 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 02:03:59,469 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 34 [2024-11-22 02:03:59,469 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:03:59,473 INFO L225 Difference]: With dead ends: 474 [2024-11-22 02:03:59,474 INFO L226 Difference]: Without dead ends: 285 [2024-11-22 02:03:59,475 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-22 02:03:59,476 INFO L432 NwaCegarLoop]: 103 mSDtfsCounter, 80 mSDsluCounter, 271 mSDsCounter, 0 mSdLazyCounter, 30 mSolverCounterSat, 9 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 80 SdHoareTripleChecker+Valid, 374 SdHoareTripleChecker+Invalid, 39 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 9 IncrementalHoareTripleChecker+Valid, 30 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:03:59,476 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [80 Valid, 374 Invalid, 39 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [9 Valid, 30 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:03:59,480 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 285 states. [2024-11-22 02:03:59,508 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 285 to 283. [2024-11-22 02:03:59,509 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 283 states, 208 states have (on average 1.2884615384615385) internal successors, (268), 227 states have internal predecessors, (268), 40 states have call successors, (40), 34 states have call predecessors, (40), 34 states have return successors, (50), 37 states have call predecessors, (50), 40 states have call successors, (50) [2024-11-22 02:03:59,511 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 283 states to 283 states and 358 transitions. [2024-11-22 02:03:59,511 INFO L78 Accepts]: Start accepts. Automaton has 283 states and 358 transitions. Word has length 34 [2024-11-22 02:03:59,511 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:03:59,511 INFO L471 AbstractCegarLoop]: Abstraction has 283 states and 358 transitions. [2024-11-22 02:03:59,512 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.2) internal successors, (31), 5 states have internal predecessors, (31), 2 states have call successors, (2), 1 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-22 02:03:59,512 INFO L276 IsEmpty]: Start isEmpty. Operand 283 states and 358 transitions. [2024-11-22 02:03:59,513 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 58 [2024-11-22 02:03:59,513 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:59,514 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:59,514 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-22 02:03:59,514 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:59,514 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:59,514 INFO L85 PathProgramCache]: Analyzing trace with hash -622748863, now seen corresponding path program 1 times [2024-11-22 02:03:59,515 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:59,515 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [198818672] [2024-11-22 02:03:59,515 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:59,515 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:59,527 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:59,594 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-22 02:03:59,595 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:59,595 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [198818672] [2024-11-22 02:03:59,595 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [198818672] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:59,595 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:59,595 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 02:03:59,595 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1162161367] [2024-11-22 02:03:59,595 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:59,595 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 02:03:59,595 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:59,596 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 02:03:59,596 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 02:03:59,596 INFO L87 Difference]: Start difference. First operand 283 states and 358 transitions. Second operand has 5 states, 5 states have (on average 9.2) internal successors, (46), 5 states have internal predecessors, (46), 2 states have call successors, (5), 1 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-22 02:03:59,629 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:03:59,629 INFO L93 Difference]: Finished difference Result 564 states and 734 transitions. [2024-11-22 02:03:59,631 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 02:03:59,631 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 9.2) internal successors, (46), 5 states have internal predecessors, (46), 2 states have call successors, (5), 1 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 57 [2024-11-22 02:03:59,631 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:03:59,633 INFO L225 Difference]: With dead ends: 564 [2024-11-22 02:03:59,633 INFO L226 Difference]: Without dead ends: 289 [2024-11-22 02:03:59,634 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 02:03:59,637 INFO L432 NwaCegarLoop]: 106 mSDtfsCounter, 0 mSDsluCounter, 312 mSDsCounter, 0 mSdLazyCounter, 17 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 418 SdHoareTripleChecker+Invalid, 17 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 17 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:03:59,639 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 418 Invalid, 17 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 17 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:03:59,640 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 289 states. [2024-11-22 02:03:59,656 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 289 to 289. [2024-11-22 02:03:59,657 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 289 states, 214 states have (on average 1.280373831775701) internal successors, (274), 233 states have internal predecessors, (274), 40 states have call successors, (40), 34 states have call predecessors, (40), 34 states have return successors, (50), 37 states have call predecessors, (50), 40 states have call successors, (50) [2024-11-22 02:03:59,659 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 289 states to 289 states and 364 transitions. [2024-11-22 02:03:59,660 INFO L78 Accepts]: Start accepts. Automaton has 289 states and 364 transitions. Word has length 57 [2024-11-22 02:03:59,661 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:03:59,661 INFO L471 AbstractCegarLoop]: Abstraction has 289 states and 364 transitions. [2024-11-22 02:03:59,661 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 9.2) internal successors, (46), 5 states have internal predecessors, (46), 2 states have call successors, (5), 1 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-22 02:03:59,662 INFO L276 IsEmpty]: Start isEmpty. Operand 289 states and 364 transitions. [2024-11-22 02:03:59,663 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 58 [2024-11-22 02:03:59,667 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:59,667 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:59,667 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-22 02:03:59,668 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:59,668 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:59,668 INFO L85 PathProgramCache]: Analyzing trace with hash 78851011, now seen corresponding path program 1 times [2024-11-22 02:03:59,668 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:59,668 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2071250669] [2024-11-22 02:03:59,668 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:59,668 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:59,699 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:59,823 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-22 02:03:59,824 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:59,824 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2071250669] [2024-11-22 02:03:59,826 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2071250669] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:59,826 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:59,826 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-22 02:03:59,826 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1053131467] [2024-11-22 02:03:59,827 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:59,827 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-22 02:03:59,827 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:59,827 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-22 02:03:59,827 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 02:03:59,828 INFO L87 Difference]: Start difference. First operand 289 states and 364 transitions. Second operand has 6 states, 6 states have (on average 7.666666666666667) internal successors, (46), 6 states have internal predecessors, (46), 2 states have call successors, (5), 1 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-22 02:03:59,861 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:03:59,861 INFO L93 Difference]: Finished difference Result 574 states and 744 transitions. [2024-11-22 02:03:59,862 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2024-11-22 02:03:59,862 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.666666666666667) internal successors, (46), 6 states have internal predecessors, (46), 2 states have call successors, (5), 1 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) Word has length 57 [2024-11-22 02:03:59,862 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:03:59,864 INFO L225 Difference]: With dead ends: 574 [2024-11-22 02:03:59,864 INFO L226 Difference]: Without dead ends: 293 [2024-11-22 02:03:59,865 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 02:03:59,866 INFO L432 NwaCegarLoop]: 105 mSDtfsCounter, 0 mSDsluCounter, 412 mSDsCounter, 0 mSdLazyCounter, 25 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 517 SdHoareTripleChecker+Invalid, 25 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 25 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:03:59,867 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 517 Invalid, 25 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 25 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:03:59,868 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 293 states. [2024-11-22 02:03:59,888 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 293 to 293. [2024-11-22 02:03:59,889 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 293 states, 218 states have (on average 1.275229357798165) internal successors, (278), 237 states have internal predecessors, (278), 40 states have call successors, (40), 34 states have call predecessors, (40), 34 states have return successors, (50), 37 states have call predecessors, (50), 40 states have call successors, (50) [2024-11-22 02:03:59,891 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 293 states to 293 states and 368 transitions. [2024-11-22 02:03:59,891 INFO L78 Accepts]: Start accepts. Automaton has 293 states and 368 transitions. Word has length 57 [2024-11-22 02:03:59,891 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:03:59,891 INFO L471 AbstractCegarLoop]: Abstraction has 293 states and 368 transitions. [2024-11-22 02:03:59,892 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.666666666666667) internal successors, (46), 6 states have internal predecessors, (46), 2 states have call successors, (5), 1 states have call predecessors, (5), 2 states have return successors, (4), 2 states have call predecessors, (4), 2 states have call successors, (4) [2024-11-22 02:03:59,892 INFO L276 IsEmpty]: Start isEmpty. Operand 293 states and 368 transitions. [2024-11-22 02:03:59,893 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 58 [2024-11-22 02:03:59,893 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:03:59,894 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:03:59,894 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-22 02:03:59,894 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:03:59,895 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:03:59,896 INFO L85 PathProgramCache]: Analyzing trace with hash 6464453, now seen corresponding path program 1 times [2024-11-22 02:03:59,896 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:03:59,896 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1509773222] [2024-11-22 02:03:59,896 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:03:59,896 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:03:59,913 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:03:59,970 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-22 02:03:59,973 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:03:59,973 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1509773222] [2024-11-22 02:03:59,973 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1509773222] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:03:59,973 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:03:59,973 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-22 02:03:59,973 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1785657839] [2024-11-22 02:03:59,974 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:03:59,974 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-22 02:03:59,974 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:03:59,974 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-22 02:03:59,974 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:03:59,975 INFO L87 Difference]: Start difference. First operand 293 states and 368 transitions. Second operand has 4 states, 4 states have (on average 11.5) internal successors, (46), 4 states have internal predecessors, (46), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-22 02:04:00,087 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:04:00,088 INFO L93 Difference]: Finished difference Result 957 states and 1242 transitions. [2024-11-22 02:04:00,088 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-22 02:04:00,089 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 11.5) internal successors, (46), 4 states have internal predecessors, (46), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 57 [2024-11-22 02:04:00,089 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:04:00,093 INFO L225 Difference]: With dead ends: 957 [2024-11-22 02:04:00,093 INFO L226 Difference]: Without dead ends: 672 [2024-11-22 02:04:00,094 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:04:00,096 INFO L432 NwaCegarLoop]: 174 mSDtfsCounter, 135 mSDsluCounter, 167 mSDsCounter, 0 mSdLazyCounter, 57 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 135 SdHoareTripleChecker+Valid, 341 SdHoareTripleChecker+Invalid, 62 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 57 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 02:04:00,096 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [135 Valid, 341 Invalid, 62 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 57 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 02:04:00,097 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 672 states. [2024-11-22 02:04:00,134 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 672 to 658. [2024-11-22 02:04:00,135 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 658 states, 491 states have (on average 1.2566191446028514) internal successors, (617), 527 states have internal predecessors, (617), 87 states have call successors, (87), 77 states have call predecessors, (87), 79 states have return successors, (130), 83 states have call predecessors, (130), 87 states have call successors, (130) [2024-11-22 02:04:00,138 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 658 states to 658 states and 834 transitions. [2024-11-22 02:04:00,140 INFO L78 Accepts]: Start accepts. Automaton has 658 states and 834 transitions. Word has length 57 [2024-11-22 02:04:00,140 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:04:00,141 INFO L471 AbstractCegarLoop]: Abstraction has 658 states and 834 transitions. [2024-11-22 02:04:00,141 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 11.5) internal successors, (46), 4 states have internal predecessors, (46), 4 states have call successors, (5), 2 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2024-11-22 02:04:00,141 INFO L276 IsEmpty]: Start isEmpty. Operand 658 states and 834 transitions. [2024-11-22 02:04:00,142 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 62 [2024-11-22 02:04:00,142 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:04:00,142 INFO L215 NwaCegarLoop]: trace histogram [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:04:00,142 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-22 02:04:00,142 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:04:00,143 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:04:00,143 INFO L85 PathProgramCache]: Analyzing trace with hash -681836693, now seen corresponding path program 1 times [2024-11-22 02:04:00,143 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:04:00,143 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1062216980] [2024-11-22 02:04:00,144 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:04:00,144 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:04:00,161 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:04:00,292 INFO L134 CoverageAnalysis]: Checked inductivity of 3 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2024-11-22 02:04:00,293 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:04:00,293 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1062216980] [2024-11-22 02:04:00,293 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1062216980] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:04:00,293 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:04:00,293 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [10] imperfect sequences [] total 10 [2024-11-22 02:04:00,294 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [485991492] [2024-11-22 02:04:00,294 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:04:00,294 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2024-11-22 02:04:00,294 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:04:00,295 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2024-11-22 02:04:00,295 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=73, Unknown=0, NotChecked=0, Total=90 [2024-11-22 02:04:00,295 INFO L87 Difference]: Start difference. First operand 658 states and 834 transitions. Second operand has 10 states, 10 states have (on average 4.8) internal successors, (48), 7 states have internal predecessors, (48), 2 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (5), 5 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-22 02:04:00,552 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:04:00,552 INFO L93 Difference]: Finished difference Result 1920 states and 2528 transitions. [2024-11-22 02:04:00,553 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-11-22 02:04:00,553 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 10 states have (on average 4.8) internal successors, (48), 7 states have internal predecessors, (48), 2 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (5), 5 states have call predecessors, (5), 2 states have call successors, (5) Word has length 61 [2024-11-22 02:04:00,554 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:04:00,560 INFO L225 Difference]: With dead ends: 1920 [2024-11-22 02:04:00,560 INFO L226 Difference]: Without dead ends: 1270 [2024-11-22 02:04:00,562 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 21 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=45, Invalid=227, Unknown=0, NotChecked=0, Total=272 [2024-11-22 02:04:00,563 INFO L432 NwaCegarLoop]: 103 mSDtfsCounter, 89 mSDsluCounter, 658 mSDsCounter, 0 mSdLazyCounter, 218 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 93 SdHoareTripleChecker+Valid, 761 SdHoareTripleChecker+Invalid, 222 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 218 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 02:04:00,563 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [93 Valid, 761 Invalid, 222 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 218 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 02:04:00,564 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1270 states. [2024-11-22 02:04:00,630 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1270 to 1270. [2024-11-22 02:04:00,632 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1270 states, 937 states have (on average 1.2305229455709712) internal successors, (1153), 1004 states have internal predecessors, (1153), 174 states have call successors, (174), 154 states have call predecessors, (174), 158 states have return successors, (279), 166 states have call predecessors, (279), 174 states have call successors, (279) [2024-11-22 02:04:00,637 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1270 states to 1270 states and 1606 transitions. [2024-11-22 02:04:00,638 INFO L78 Accepts]: Start accepts. Automaton has 1270 states and 1606 transitions. Word has length 61 [2024-11-22 02:04:00,639 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:04:00,639 INFO L471 AbstractCegarLoop]: Abstraction has 1270 states and 1606 transitions. [2024-11-22 02:04:00,639 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 10 states have (on average 4.8) internal successors, (48), 7 states have internal predecessors, (48), 2 states have call successors, (6), 1 states have call predecessors, (6), 4 states have return successors, (5), 5 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-22 02:04:00,639 INFO L276 IsEmpty]: Start isEmpty. Operand 1270 states and 1606 transitions. [2024-11-22 02:04:00,644 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 119 [2024-11-22 02:04:00,645 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:04:00,645 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:04:00,645 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-22 02:04:00,645 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:04:00,645 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:04:00,646 INFO L85 PathProgramCache]: Analyzing trace with hash -1331443531, now seen corresponding path program 1 times [2024-11-22 02:04:00,646 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:04:00,646 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1222155021] [2024-11-22 02:04:00,646 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:04:00,646 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:04:00,663 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:04:00,828 INFO L134 CoverageAnalysis]: Checked inductivity of 53 backedges. 20 proven. 13 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2024-11-22 02:04:00,829 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:04:00,829 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1222155021] [2024-11-22 02:04:00,829 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1222155021] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:04:00,829 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1740865598] [2024-11-22 02:04:00,829 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:04:00,829 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:04:00,829 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:04:00,832 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:04:00,832 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-22 02:04:00,917 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:04:00,920 INFO L255 TraceCheckSpWp]: Trace formula consists of 371 conjuncts, 9 conjuncts are in the unsatisfiable core [2024-11-22 02:04:00,928 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:04:01,122 INFO L134 CoverageAnalysis]: Checked inductivity of 53 backedges. 37 proven. 0 refuted. 0 times theorem prover too weak. 16 trivial. 0 not checked. [2024-11-22 02:04:01,123 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:04:01,123 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1740865598] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:04:01,123 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:04:01,123 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [12] total 18 [2024-11-22 02:04:01,124 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1107239660] [2024-11-22 02:04:01,124 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:04:01,124 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-22 02:04:01,124 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:04:01,124 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-22 02:04:01,126 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=46, Invalid=260, Unknown=0, NotChecked=0, Total=306 [2024-11-22 02:04:01,126 INFO L87 Difference]: Start difference. First operand 1270 states and 1606 transitions. Second operand has 8 states, 8 states have (on average 10.125) internal successors, (81), 6 states have internal predecessors, (81), 3 states have call successors, (14), 3 states have call predecessors, (14), 5 states have return successors, (13), 5 states have call predecessors, (13), 3 states have call successors, (13) [2024-11-22 02:04:01,310 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:04:01,310 INFO L93 Difference]: Finished difference Result 2532 states and 3204 transitions. [2024-11-22 02:04:01,311 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-11-22 02:04:01,311 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 10.125) internal successors, (81), 6 states have internal predecessors, (81), 3 states have call successors, (14), 3 states have call predecessors, (14), 5 states have return successors, (13), 5 states have call predecessors, (13), 3 states have call successors, (13) Word has length 118 [2024-11-22 02:04:01,311 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:04:01,318 INFO L225 Difference]: With dead ends: 2532 [2024-11-22 02:04:01,318 INFO L226 Difference]: Without dead ends: 1270 [2024-11-22 02:04:01,321 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 130 GetRequests, 114 SyntacticMatches, 0 SemanticMatches, 16 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=260, Unknown=0, NotChecked=0, Total=306 [2024-11-22 02:04:01,323 INFO L432 NwaCegarLoop]: 192 mSDtfsCounter, 67 mSDsluCounter, 805 mSDsCounter, 0 mSdLazyCounter, 179 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 69 SdHoareTripleChecker+Valid, 997 SdHoareTripleChecker+Invalid, 180 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 179 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 02:04:01,323 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [69 Valid, 997 Invalid, 180 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 179 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 02:04:01,324 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1270 states. [2024-11-22 02:04:01,392 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1270 to 1270. [2024-11-22 02:04:01,394 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1270 states, 937 states have (on average 1.2145144076840981) internal successors, (1138), 1004 states have internal predecessors, (1138), 174 states have call successors, (174), 154 states have call predecessors, (174), 158 states have return successors, (248), 166 states have call predecessors, (248), 174 states have call successors, (248) [2024-11-22 02:04:01,399 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1270 states to 1270 states and 1560 transitions. [2024-11-22 02:04:01,400 INFO L78 Accepts]: Start accepts. Automaton has 1270 states and 1560 transitions. Word has length 118 [2024-11-22 02:04:01,400 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:04:01,400 INFO L471 AbstractCegarLoop]: Abstraction has 1270 states and 1560 transitions. [2024-11-22 02:04:01,400 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 10.125) internal successors, (81), 6 states have internal predecessors, (81), 3 states have call successors, (14), 3 states have call predecessors, (14), 5 states have return successors, (13), 5 states have call predecessors, (13), 3 states have call successors, (13) [2024-11-22 02:04:01,400 INFO L276 IsEmpty]: Start isEmpty. Operand 1270 states and 1560 transitions. [2024-11-22 02:04:01,403 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2024-11-22 02:04:01,404 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:04:01,404 INFO L215 NwaCegarLoop]: trace histogram [4, 4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:04:01,413 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-22 02:04:01,608 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:04:01,609 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:04:01,610 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:04:01,610 INFO L85 PathProgramCache]: Analyzing trace with hash 1582774687, now seen corresponding path program 1 times [2024-11-22 02:04:01,610 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:04:01,610 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1691135824] [2024-11-22 02:04:01,610 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:04:01,610 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:04:01,624 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:04:01,756 INFO L134 CoverageAnalysis]: Checked inductivity of 45 backedges. 19 proven. 2 refuted. 0 times theorem prover too weak. 24 trivial. 0 not checked. [2024-11-22 02:04:01,757 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:04:01,757 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1691135824] [2024-11-22 02:04:01,757 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1691135824] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:04:01,758 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1168355041] [2024-11-22 02:04:01,758 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:04:01,758 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:04:01,758 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:04:01,760 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:04:01,761 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-22 02:04:01,830 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:04:01,831 INFO L255 TraceCheckSpWp]: Trace formula consists of 352 conjuncts, 9 conjuncts are in the unsatisfiable core [2024-11-22 02:04:01,835 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:04:01,956 INFO L134 CoverageAnalysis]: Checked inductivity of 45 backedges. 36 proven. 0 refuted. 0 times theorem prover too weak. 9 trivial. 0 not checked. [2024-11-22 02:04:01,956 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:04:01,956 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1168355041] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:04:01,956 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:04:01,956 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [11] total 17 [2024-11-22 02:04:01,956 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [297685841] [2024-11-22 02:04:01,956 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:04:01,956 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-22 02:04:01,956 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:04:01,957 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-22 02:04:01,957 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=42, Invalid=230, Unknown=0, NotChecked=0, Total=272 [2024-11-22 02:04:01,957 INFO L87 Difference]: Start difference. First operand 1270 states and 1560 transitions. Second operand has 8 states, 8 states have (on average 9.875) internal successors, (79), 6 states have internal predecessors, (79), 3 states have call successors, (13), 3 states have call predecessors, (13), 5 states have return successors, (12), 5 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 02:04:02,093 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:04:02,094 INFO L93 Difference]: Finished difference Result 2156 states and 2676 transitions. [2024-11-22 02:04:02,095 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-11-22 02:04:02,095 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 9.875) internal successors, (79), 6 states have internal predecessors, (79), 3 states have call successors, (13), 3 states have call predecessors, (13), 5 states have return successors, (12), 5 states have call predecessors, (12), 3 states have call successors, (12) Word has length 110 [2024-11-22 02:04:02,095 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:04:02,097 INFO L225 Difference]: With dead ends: 2156 [2024-11-22 02:04:02,097 INFO L226 Difference]: Without dead ends: 0 [2024-11-22 02:04:02,102 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 123 GetRequests, 106 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 27 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=54, Invalid=288, Unknown=0, NotChecked=0, Total=342 [2024-11-22 02:04:02,102 INFO L432 NwaCegarLoop]: 182 mSDtfsCounter, 65 mSDsluCounter, 629 mSDsCounter, 0 mSdLazyCounter, 107 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 68 SdHoareTripleChecker+Valid, 811 SdHoareTripleChecker+Invalid, 107 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 107 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 02:04:02,103 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [68 Valid, 811 Invalid, 107 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 107 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 02:04:02,104 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-22 02:04:02,104 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-22 02:04:02,104 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-22 02:04:02,104 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-22 02:04:02,105 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 110 [2024-11-22 02:04:02,105 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:04:02,105 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-22 02:04:02,105 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 9.875) internal successors, (79), 6 states have internal predecessors, (79), 3 states have call successors, (13), 3 states have call predecessors, (13), 5 states have return successors, (12), 5 states have call predecessors, (12), 3 states have call successors, (12) [2024-11-22 02:04:02,105 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-22 02:04:02,106 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-22 02:04:02,108 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-22 02:04:02,116 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-22 02:04:02,309 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-22 02:04:02,311 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:04:02,313 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-22 02:04:05,587 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-22 02:04:05,614 WARN L156 FloydHoareUtils]: Requires clause for changeMethaneLevel contained old-variable. Original clause: (let ((.cse1 (= |old(~methaneLevelCritical~0)| 0))) (and (or (<= 1 ~methaneLevelCritical~0) (< |old(~methaneLevelCritical~0)| 1)) (let ((.cse0 (= ~pumpRunning~0 0))) (or (and .cse0 .cse1) (and .cse0 (<= 1 |old(~methaneLevelCritical~0)|)) (and .cse1 (not (= 0 ~systemActive~0))))) (or (not .cse1) (= ~methaneLevelCritical~0 0)))) Eliminated clause: (exists ((|old(~methaneLevelCritical~0)| Int)) (let ((.cse1 (= |old(~methaneLevelCritical~0)| 0))) (and (let ((.cse0 (= ~pumpRunning~0 0))) (or (and .cse0 .cse1) (and .cse0 (<= 1 |old(~methaneLevelCritical~0)|)) (and .cse1 (not (= 0 ~systemActive~0))))) (or (< |old(~methaneLevelCritical~0)| 1) (< 0 ~methaneLevelCritical~0)) (or (not .cse1) (= ~methaneLevelCritical~0 0))))) [2024-11-22 02:04:05,618 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-22 02:04:05,629 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse2 (= |old(~pumpRunning~0)| 0))) (let ((.cse4 (not .cse2)) (.cse6 (= |old(~waterLevel~0)| 1)) (.cse5 (= ~waterLevel~0 1))) (and (let ((.cse0 (= ~methaneLevelCritical~0 0)) (.cse3 (<= 1 ~methaneLevelCritical~0)) (.cse1 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1) (and .cse0 .cse2) (and .cse3 .cse2) (and .cse3 .cse1))) (or .cse4 (= ~pumpRunning~0 0)) (or (not .cse5) .cse6) (or .cse4 (not .cse6) .cse5)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse2 (= |old(~pumpRunning~0)| 0))) (let ((.cse4 (not .cse2)) (.cse6 (= |old(~waterLevel~0)| 1)) (.cse5 (= ~waterLevel~0 1))) (and (let ((.cse0 (= ~methaneLevelCritical~0 0)) (.cse3 (<= 1 ~methaneLevelCritical~0)) (.cse1 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1) (and .cse0 .cse2) (and .cse3 .cse2) (and .cse3 .cse1))) (or .cse4 (= ~pumpRunning~0 0)) (or (not .cse5) .cse6) (or .cse4 (not .cse6) .cse5))))) [2024-11-22 02:04:05,637 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-22 02:04:05,650 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (let ((.cse0 (= ~pumpRunning~0 0))) (and (let ((.cse1 (= ~methaneLevelCritical~0 0))) (or (and .cse0 (<= 1 ~methaneLevelCritical~0)) (and .cse1 (not (= 0 ~systemActive~0))) (and .cse0 .cse1))) (or (not .cse0) (not (= |old(~waterLevel~0)| 1)) (= ~waterLevel~0 1)))) Eliminated clause: (let ((.cse0 (= ~pumpRunning~0 0)) (.cse1 (= ~methaneLevelCritical~0 0))) (or (and .cse0 (<= 1 ~methaneLevelCritical~0)) (and .cse1 (not (= 0 ~systemActive~0))) (and .cse0 .cse1))) [2024-11-22 02:04:05,653 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__wrappee__methaneQuery contained old-variable. Original clause: (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (and (let ((.cse0 (not (= 0 ~systemActive~0)))) (or (and (= ~methaneLevelCritical~0 0) .cse0) (and (<= 1 ~methaneLevelCritical~0) .cse1 .cse0))) (or (not .cse1) (= ~pumpRunning~0 0)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse1 (= |old(~pumpRunning~0)| 0))) (and (let ((.cse0 (not (= 0 ~systemActive~0)))) (or (and (= ~methaneLevelCritical~0 0) .cse0) (and (<= 1 ~methaneLevelCritical~0) .cse1 .cse0))) (or (not .cse1) (= ~pumpRunning~0 0))))) [2024-11-22 02:04:05,655 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-22 02:04:05,659 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 22.11 02:04:05 BoogieIcfgContainer [2024-11-22 02:04:05,659 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-22 02:04:05,660 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-22 02:04:05,660 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-22 02:04:05,660 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-22 02:04:05,661 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 02:03:58" (3/4) ... [2024-11-22 02:04:05,663 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-22 02:04:05,666 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-22 02:04:05,666 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2024-11-22 02:04:05,666 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-22 02:04:05,666 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-22 02:04:05,666 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-22 02:04:05,666 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneLevelCritical [2024-11-22 02:04:05,667 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-22 02:04:05,667 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2024-11-22 02:04:05,667 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-22 02:04:05,672 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 20 nodes and edges [2024-11-22 02:04:05,673 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-22 02:04:05,674 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-22 02:04:05,674 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-22 02:04:05,675 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-22 02:04:05,784 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-22 02:04:05,786 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-22 02:04:05,786 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-22 02:04:05,787 INFO L158 Benchmark]: Toolchain (without parser) took 8422.48ms. Allocated memory was 201.3MB in the beginning and 293.6MB in the end (delta: 92.3MB). Free memory was 172.0MB in the beginning and 137.2MB in the end (delta: 34.9MB). Peak memory consumption was 126.0MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,787 INFO L158 Benchmark]: CDTParser took 0.10ms. Allocated memory is still 134.2MB. Free memory was 99.0MB in the beginning and 98.8MB in the end (delta: 139.9kB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-22 02:04:05,787 INFO L158 Benchmark]: CACSL2BoogieTranslator took 440.99ms. Allocated memory is still 201.3MB. Free memory was 171.8MB in the beginning and 151.7MB in the end (delta: 20.1MB). Peak memory consumption was 23.3MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,787 INFO L158 Benchmark]: Boogie Procedure Inliner took 50.05ms. Allocated memory is still 201.3MB. Free memory was 151.7MB in the beginning and 149.7MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,787 INFO L158 Benchmark]: Boogie Preprocessor took 45.05ms. Allocated memory is still 201.3MB. Free memory was 149.7MB in the beginning and 146.7MB in the end (delta: 3.0MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,787 INFO L158 Benchmark]: RCFGBuilder took 412.26ms. Allocated memory is still 201.3MB. Free memory was 146.7MB in the beginning and 127.8MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,788 INFO L158 Benchmark]: TraceAbstraction took 7341.19ms. Allocated memory was 201.3MB in the beginning and 293.6MB in the end (delta: 92.3MB). Free memory was 127.8MB in the beginning and 145.5MB in the end (delta: -17.8MB). Peak memory consumption was 132.9MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,788 INFO L158 Benchmark]: Witness Printer took 126.33ms. Allocated memory is still 293.6MB. Free memory was 144.5MB in the beginning and 137.2MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2024-11-22 02:04:05,789 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.10ms. Allocated memory is still 134.2MB. Free memory was 99.0MB in the beginning and 98.8MB in the end (delta: 139.9kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 440.99ms. Allocated memory is still 201.3MB. Free memory was 171.8MB in the beginning and 151.7MB in the end (delta: 20.1MB). Peak memory consumption was 23.3MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 50.05ms. Allocated memory is still 201.3MB. Free memory was 151.7MB in the beginning and 149.7MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 45.05ms. Allocated memory is still 201.3MB. Free memory was 149.7MB in the beginning and 146.7MB in the end (delta: 3.0MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * RCFGBuilder took 412.26ms. Allocated memory is still 201.3MB. Free memory was 146.7MB in the beginning and 127.8MB in the end (delta: 18.9MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * TraceAbstraction took 7341.19ms. Allocated memory was 201.3MB in the beginning and 293.6MB in the end (delta: 92.3MB). Free memory was 127.8MB in the beginning and 145.5MB in the end (delta: -17.8MB). Peak memory consumption was 132.9MB. Max. memory is 16.1GB. * Witness Printer took 126.33ms. Allocated memory is still 293.6MB. Free memory was 144.5MB in the beginning and 137.2MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 150]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [150] - GenericResultAtLocation [Line: 188]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [188] - GenericResultAtLocation [Line: 261]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [261] - GenericResultAtLocation [Line: 484]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification2_spec.i","") [484] - GenericResultAtLocation [Line: 524]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [524] - GenericResultAtLocation [Line: 890]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [890] - GenericResultAtLocation [Line: 899]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [899] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 895]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 10 procedures, 103 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 3.9s, OverallIterations: 10, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 1.3s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 652 SdHoareTripleChecker+Valid, 0.6s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 639 mSDsluCounter, 5016 SdHoareTripleChecker+Invalid, 0.5s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3691 mSDsCounter, 22 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 738 IncrementalHoareTripleChecker+Invalid, 760 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 22 mSolverCounterUnsat, 1325 mSDtfsCounter, 738 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 309 GetRequests, 240 SyntacticMatches, 0 SemanticMatches, 69 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 66 ImplicationChecksByTransitivity, 0.4s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=1270occurred in iteration=8, InterpolantAutomatonStates: 62, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.3s AutomataMinimizationTime, 10 MinimizatonAttempts, 22 StatesRemovedByMinimization, 3 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 1.3s InterpolantComputationTime, 804 NumberOfCodeBlocks, 804 NumberOfCodeBlocksAsserted, 12 NumberOfCheckSat, 792 ConstructedInterpolants, 0 QuantifiedInterpolants, 1252 SizeOfPredicates, 1 NumberOfNonLiveVariables, 723 ConjunctsInSsa, 18 ConjunctsInUnsatCore, 12 InterpolantComputations, 10 PerfectInterpolantSequences, 193/208 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 202]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 911]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 203]: Loop Invariant Derived loop invariant: (((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (splverifierCounter == 0)) || (((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (splverifierCounter == 0))) || (((methaneLevelCritical == 0) && (splverifierCounter == 0)) && (0 != systemActive))) - ProcedureContractResult [Line: 378]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: (((methaneLevelCritical == 0) && (0 != systemActive)) || ((1 <= methaneLevelCritical) && (0 != systemActive))) Ensures: (((pumpRunning == 0) && (((methaneLevelCritical == 0) && (0 != systemActive)) || ((1 <= methaneLevelCritical) && (0 != systemActive)))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 294]: Procedure Contract for processEnvironment__wrappee__base Derived contract for procedure processEnvironment__wrappee__base. Requires: (((methaneLevelCritical == 0) && (0 != systemActive)) || (((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (0 != systemActive))) Ensures: ((((methaneLevelCritical == 0) && (0 != systemActive)) || (((pumpRunning == 0) && (1 <= methaneLevelCritical)) && (0 != systemActive))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 83]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Ensures: (((((((pumpRunning == 0) && (\old(methaneLevelCritical) == 0)) || ((pumpRunning == 0) && (1 <= \old(methaneLevelCritical)))) || ((\old(methaneLevelCritical) == 0) && (0 != systemActive))) && ((\old(methaneLevelCritical) != 0) || (0 < methaneLevelCritical))) && ((methaneLevelCritical == 0) || (\old(methaneLevelCritical) < 1))) && ((((((waterLevel == \old(waterLevel)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 901]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 270]: Procedure Contract for timeShift Derived contract for procedure timeShift. Ensures: ((((((((((methaneLevelCritical == 0) && (0 != systemActive)) || ((methaneLevelCritical == 0) && (\old(pumpRunning) == 0))) || ((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0))) || ((1 <= methaneLevelCritical) && (0 != systemActive))) && (((\old(pumpRunning) != 0) || (\old(waterLevel) != 1)) || ((pumpRunning == 0) && (waterLevel == 1)))) && ((pumpRunning == 0) || (methaneLevelCritical < 1))) && ((pumpRunning == 0) || (0 != systemActive))) && (((waterLevel != 1) || (\old(pumpRunning) != 0)) || (\old(waterLevel) == 1))) && ((((methaneLevelCritical == \old(methaneLevelCritical)) && (systemActive == \old(systemActive))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 95]: Procedure Contract for isMethaneLevelCritical Derived contract for procedure isMethaneLevelCritical. Requires: (((((pumpRunning == 0) && (1 <= methaneLevelCritical)) || ((methaneLevelCritical == 0) && (0 != systemActive))) || ((1 <= methaneLevelCritical) && (0 != systemActive))) || ((pumpRunning == 0) && (methaneLevelCritical == 0))) Ensures: (((\result == methaneLevelCritical) && (((((pumpRunning == 0) && (1 <= methaneLevelCritical)) || ((methaneLevelCritical == 0) && (0 != systemActive))) || ((1 <= methaneLevelCritical) && (0 != systemActive))) || ((pumpRunning == 0) && (methaneLevelCritical == 0)))) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 71]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((((pumpRunning == 0) && (1 <= methaneLevelCritical)) || ((methaneLevelCritical == 0) && (0 != systemActive))) || ((pumpRunning == 0) && (methaneLevelCritical == 0))) Ensures: ((((((pumpRunning == 0) && (1 <= methaneLevelCritical)) || ((methaneLevelCritical == 0) && (0 != systemActive))) || ((pumpRunning == 0) && (methaneLevelCritical == 0))) && (((waterLevel != 1) || (pumpRunning != 0)) || (\old(waterLevel) != 1))) && ((((((methaneLevelCritical == \old(methaneLevelCritical)) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 302]: Procedure Contract for processEnvironment__wrappee__methaneQuery Derived contract for procedure processEnvironment__wrappee__methaneQuery. Ensures: ((((((methaneLevelCritical == 0) && (0 != systemActive)) || (((1 <= methaneLevelCritical) && (\old(pumpRunning) == 0)) && (0 != systemActive))) && ((pumpRunning == 0) || (methaneLevelCritical < 1))) && (((waterLevel != 1) || (\old(pumpRunning) != 0)) || (pumpRunning == 0))) && ((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) - ProcedureContractResult [Line: 386]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: (((methaneLevelCritical == 0) && (0 != systemActive)) || ((1 <= methaneLevelCritical) && (0 != systemActive))) Ensures: (((((methaneLevelCritical == 0) && (0 != systemActive)) || ((1 <= methaneLevelCritical) && (0 != systemActive))) && (\result == methaneLevelCritical)) && (((((((waterLevel == \old(waterLevel)) && (methaneLevelCritical == \old(methaneLevelCritical))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (methAndRunningLastTime == \old(methAndRunningLastTime))) && (head == \old(head))) && (cleanupTimeShifts == \old(cleanupTimeShifts)))) RESULT: Ultimate proved your program to be correct! [2024-11-22 02:04:05,807 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE