./Ultimate.py --spec ../sv-benchmarks/c/properties/unreach-call.prp --file ../sv-benchmarks/c/product-lines/minepump_spec5_productSimulator.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 803cd42f Calling Ultimate with: /root/.sdkman/candidates/java/current/bin/java -Dosgi.configuration.area=/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/config -Xmx15G -Xms4m -jar /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data -tc /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/AutomizerReach.xml -i ../sv-benchmarks/c/product-lines/minepump_spec5_productSimulator.cil.c -s /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 62c2cf132c1af8470eae7f9b6621445fd5b91c1643db1f71bf7213022a4dec0a --- Real Ultimate output --- This is Ultimate 0.2.5-tmp.dk.eval-assert-order-craig-803cd42-m [2024-11-22 02:07:09,407 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-22 02:07:09,488 INFO L114 SettingsManager]: Loading settings from /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-22 02:07:09,495 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-22 02:07:09,497 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-22 02:07:09,532 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-22 02:07:09,534 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-22 02:07:09,534 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-22 02:07:09,535 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-22 02:07:09,536 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-22 02:07:09,536 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-22 02:07:09,536 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-22 02:07:09,537 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-22 02:07:09,539 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-22 02:07:09,539 INFO L153 SettingsManager]: * Use SBE=true [2024-11-22 02:07:09,540 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-22 02:07:09,540 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-22 02:07:09,540 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-22 02:07:09,540 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-22 02:07:09,541 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-22 02:07:09,541 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-22 02:07:09,541 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-22 02:07:09,542 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-22 02:07:09,542 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-22 02:07:09,542 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-22 02:07:09,543 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-22 02:07:09,543 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-22 02:07:09,543 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-22 02:07:09,543 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-22 02:07:09,544 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-22 02:07:09,544 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-22 02:07:09,544 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-22 02:07:09,545 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-22 02:07:09,545 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-22 02:07:09,546 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-22 02:07:09,546 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-22 02:07:09,546 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-22 02:07:09,546 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-22 02:07:09,547 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-22 02:07:09,547 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-22 02:07:09,547 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-22 02:07:09,547 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-22 02:07:09,548 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 62c2cf132c1af8470eae7f9b6621445fd5b91c1643db1f71bf7213022a4dec0a [2024-11-22 02:07:09,815 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-22 02:07:09,838 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-22 02:07:09,841 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-22 02:07:09,843 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-22 02:07:09,843 INFO L274 PluginConnector]: CDTParser initialized [2024-11-22 02:07:09,844 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/../sv-benchmarks/c/product-lines/minepump_spec5_productSimulator.cil.c [2024-11-22 02:07:11,380 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-22 02:07:11,624 INFO L384 CDTParser]: Found 1 translation units. [2024-11-22 02:07:11,625 INFO L180 CDTParser]: Scanning /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_productSimulator.cil.c [2024-11-22 02:07:11,638 INFO L427 CDTParser]: About to delete temporary CDT project at /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/ccc9dd894/119450fee1c046a6983d42f68449cf8a/FLAG6e197e2b6 [2024-11-22 02:07:11,657 INFO L435 CDTParser]: Successfully deleted /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/data/ccc9dd894/119450fee1c046a6983d42f68449cf8a [2024-11-22 02:07:11,660 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-22 02:07:11,662 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-22 02:07:11,663 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-22 02:07:11,664 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-22 02:07:11,670 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-22 02:07:11,671 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.11 02:07:11" (1/1) ... [2024-11-22 02:07:11,672 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@2475ee96 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:11, skipping insertion in model container [2024-11-22 02:07:11,673 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 22.11 02:07:11" (1/1) ... [2024-11-22 02:07:11,718 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-22 02:07:11,979 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_productSimulator.cil.c[5724,5737] [2024-11-22 02:07:12,076 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-22 02:07:12,089 INFO L200 MainTranslator]: Completed pre-run [2024-11-22 02:07:12,099 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] [2024-11-22 02:07:12,100 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [168] [2024-11-22 02:07:12,101 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [272] [2024-11-22 02:07:12,101 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [317] [2024-11-22 02:07:12,101 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [326] [2024-11-22 02:07:12,101 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [692] [2024-11-22 02:07:12,102 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [771] [2024-11-22 02:07:12,102 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [1110] [2024-11-22 02:07:12,118 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /storage/repos/ultimate/releaseScripts/default/sv-benchmarks/c/product-lines/minepump_spec5_productSimulator.cil.c[5724,5737] [2024-11-22 02:07:12,166 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-22 02:07:12,191 INFO L204 MainTranslator]: Completed translation [2024-11-22 02:07:12,192 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12 WrapperNode [2024-11-22 02:07:12,192 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-22 02:07:12,193 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-22 02:07:12,193 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-22 02:07:12,193 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-22 02:07:12,199 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,212 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,260 INFO L138 Inliner]: procedures = 65, calls = 124, calls flagged for inlining = 30, calls inlined = 27, statements flattened = 303 [2024-11-22 02:07:12,261 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-22 02:07:12,261 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-22 02:07:12,261 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-22 02:07:12,262 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-22 02:07:12,275 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,275 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,279 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,311 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-22 02:07:12,311 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,312 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,318 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,323 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,325 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,326 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,329 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-22 02:07:12,330 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-22 02:07:12,330 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-22 02:07:12,330 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-22 02:07:12,331 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (1/1) ... [2024-11-22 02:07:12,341 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-22 02:07:12,359 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:12,378 INFO L229 MonitoredProcess]: Starting monitored process 1 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-22 02:07:12,384 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-22 02:07:12,433 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-22 02:07:12,433 INFO L130 BoogieDeclarations]: Found specification of procedure activatePump__before__methaneQuery [2024-11-22 02:07:12,433 INFO L138 BoogieDeclarations]: Found implementation of procedure activatePump__before__methaneQuery [2024-11-22 02:07:12,433 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-22 02:07:12,434 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-22 02:07:12,434 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-22 02:07:12,434 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-22 02:07:12,434 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__before__highWaterSensor [2024-11-22 02:07:12,434 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__before__highWaterSensor [2024-11-22 02:07:12,434 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-22 02:07:12,435 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-22 02:07:12,435 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__before__methaneAlarm [2024-11-22 02:07:12,435 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__before__methaneAlarm [2024-11-22 02:07:12,435 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2024-11-22 02:07:12,436 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2024-11-22 02:07:12,436 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__before__lowWaterSensor [2024-11-22 02:07:12,436 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__before__lowWaterSensor [2024-11-22 02:07:12,436 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2024-11-22 02:07:12,437 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2024-11-22 02:07:12,437 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-22 02:07:12,437 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-22 02:07:12,437 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-22 02:07:12,439 INFO L130 BoogieDeclarations]: Found specification of procedure select_one [2024-11-22 02:07:12,439 INFO L138 BoogieDeclarations]: Found implementation of procedure select_one [2024-11-22 02:07:12,439 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-22 02:07:12,439 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-22 02:07:12,439 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-22 02:07:12,439 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-22 02:07:12,537 INFO L238 CfgBuilder]: Building ICFG [2024-11-22 02:07:12,539 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-22 02:07:12,926 INFO L? ?]: Removed 54 outVars from TransFormulas that were not future-live. [2024-11-22 02:07:12,926 INFO L287 CfgBuilder]: Performing block encoding [2024-11-22 02:07:12,943 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-22 02:07:12,943 INFO L316 CfgBuilder]: Removed 2 assume(true) statements. [2024-11-22 02:07:12,944 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 02:07:12 BoogieIcfgContainer [2024-11-22 02:07:12,944 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-22 02:07:12,946 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-22 02:07:12,946 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-22 02:07:12,949 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-22 02:07:12,949 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 22.11 02:07:11" (1/3) ... [2024-11-22 02:07:12,949 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6f80aa94 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.11 02:07:12, skipping insertion in model container [2024-11-22 02:07:12,950 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 22.11 02:07:12" (2/3) ... [2024-11-22 02:07:12,950 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6f80aa94 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 22.11 02:07:12, skipping insertion in model container [2024-11-22 02:07:12,950 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 02:07:12" (3/3) ... [2024-11-22 02:07:12,952 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_productSimulator.cil.c [2024-11-22 02:07:12,967 INFO L214 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-22 02:07:12,968 INFO L154 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2024-11-22 02:07:13,038 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-22 02:07:13,044 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2f2041c3, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-22 02:07:13,044 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-22 02:07:13,048 INFO L276 IsEmpty]: Start isEmpty. Operand has 148 states, 104 states have (on average 1.3557692307692308) internal successors, (141), 120 states have internal predecessors, (141), 30 states have call successors, (30), 12 states have call predecessors, (30), 12 states have return successors, (30), 25 states have call predecessors, (30), 30 states have call successors, (30) [2024-11-22 02:07:13,059 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2024-11-22 02:07:13,059 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:13,060 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:13,060 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:13,064 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:13,065 INFO L85 PathProgramCache]: Analyzing trace with hash 1454390312, now seen corresponding path program 1 times [2024-11-22 02:07:13,072 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:13,072 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [619454281] [2024-11-22 02:07:13,072 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:13,073 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:13,211 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:13,303 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:13,304 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:13,304 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [619454281] [2024-11-22 02:07:13,304 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [619454281] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:13,304 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:13,305 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-22 02:07:13,306 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1404546922] [2024-11-22 02:07:13,307 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:13,310 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-22 02:07:13,310 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:13,326 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-22 02:07:13,327 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-22 02:07:13,329 INFO L87 Difference]: Start difference. First operand has 148 states, 104 states have (on average 1.3557692307692308) internal successors, (141), 120 states have internal predecessors, (141), 30 states have call successors, (30), 12 states have call predecessors, (30), 12 states have return successors, (30), 25 states have call predecessors, (30), 30 states have call successors, (30) Second operand has 2 states, 2 states have (on average 16.0) internal successors, (32), 2 states have internal predecessors, (32), 2 states have call successors, (10), 2 states have call predecessors, (10), 1 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-22 02:07:13,377 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:13,381 INFO L93 Difference]: Finished difference Result 272 states and 376 transitions. [2024-11-22 02:07:13,382 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-22 02:07:13,383 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 16.0) internal successors, (32), 2 states have internal predecessors, (32), 2 states have call successors, (10), 2 states have call predecessors, (10), 1 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) Word has length 62 [2024-11-22 02:07:13,384 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:13,396 INFO L225 Difference]: With dead ends: 272 [2024-11-22 02:07:13,397 INFO L226 Difference]: Without dead ends: 139 [2024-11-22 02:07:13,402 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-22 02:07:13,408 INFO L432 NwaCegarLoop]: 195 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 195 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:13,409 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 195 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:13,427 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 139 states. [2024-11-22 02:07:13,461 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 139 to 139. [2024-11-22 02:07:13,466 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 139 states, 97 states have (on average 1.309278350515464) internal successors, (127), 112 states have internal predecessors, (127), 30 states have call successors, (30), 12 states have call predecessors, (30), 11 states have return successors, (29), 24 states have call predecessors, (29), 29 states have call successors, (29) [2024-11-22 02:07:13,471 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 139 states to 139 states and 186 transitions. [2024-11-22 02:07:13,477 INFO L78 Accepts]: Start accepts. Automaton has 139 states and 186 transitions. Word has length 62 [2024-11-22 02:07:13,478 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:13,479 INFO L471 AbstractCegarLoop]: Abstraction has 139 states and 186 transitions. [2024-11-22 02:07:13,479 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 16.0) internal successors, (32), 2 states have internal predecessors, (32), 2 states have call successors, (10), 2 states have call predecessors, (10), 1 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-22 02:07:13,479 INFO L276 IsEmpty]: Start isEmpty. Operand 139 states and 186 transitions. [2024-11-22 02:07:13,483 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 64 [2024-11-22 02:07:13,484 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:13,484 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:13,485 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-22 02:07:13,485 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:13,486 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:13,486 INFO L85 PathProgramCache]: Analyzing trace with hash -1003270502, now seen corresponding path program 1 times [2024-11-22 02:07:13,486 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:13,487 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2058920614] [2024-11-22 02:07:13,488 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:13,488 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:13,549 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:13,713 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:13,717 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:13,718 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2058920614] [2024-11-22 02:07:13,718 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2058920614] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:13,718 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:13,718 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-22 02:07:13,718 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1940066700] [2024-11-22 02:07:13,718 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:13,719 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:13,720 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:13,723 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:13,723 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 02:07:13,724 INFO L87 Difference]: Start difference. First operand 139 states and 186 transitions. Second operand has 3 states, 3 states have (on average 11.0) internal successors, (33), 3 states have internal predecessors, (33), 2 states have call successors, (10), 2 states have call predecessors, (10), 1 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-22 02:07:13,767 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:13,771 INFO L93 Difference]: Finished difference Result 221 states and 296 transitions. [2024-11-22 02:07:13,771 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:13,772 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 11.0) internal successors, (33), 3 states have internal predecessors, (33), 2 states have call successors, (10), 2 states have call predecessors, (10), 1 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) Word has length 63 [2024-11-22 02:07:13,772 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:13,774 INFO L225 Difference]: With dead ends: 221 [2024-11-22 02:07:13,777 INFO L226 Difference]: Without dead ends: 130 [2024-11-22 02:07:13,780 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-22 02:07:13,782 INFO L432 NwaCegarLoop]: 173 mSDtfsCounter, 21 mSDsluCounter, 147 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 25 SdHoareTripleChecker+Valid, 320 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:13,782 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [25 Valid, 320 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:13,783 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 130 states. [2024-11-22 02:07:13,801 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 130 to 130. [2024-11-22 02:07:13,804 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 130 states, 91 states have (on average 1.3186813186813187) internal successors, (120), 106 states have internal predecessors, (120), 27 states have call successors, (27), 11 states have call predecessors, (27), 11 states have return successors, (27), 22 states have call predecessors, (27), 27 states have call successors, (27) [2024-11-22 02:07:13,806 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 130 states to 130 states and 174 transitions. [2024-11-22 02:07:13,809 INFO L78 Accepts]: Start accepts. Automaton has 130 states and 174 transitions. Word has length 63 [2024-11-22 02:07:13,809 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:13,810 INFO L471 AbstractCegarLoop]: Abstraction has 130 states and 174 transitions. [2024-11-22 02:07:13,810 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 11.0) internal successors, (33), 3 states have internal predecessors, (33), 2 states have call successors, (10), 2 states have call predecessors, (10), 1 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-22 02:07:13,810 INFO L276 IsEmpty]: Start isEmpty. Operand 130 states and 174 transitions. [2024-11-22 02:07:13,814 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 69 [2024-11-22 02:07:13,815 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:13,816 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:13,816 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-22 02:07:13,816 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:13,817 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:13,817 INFO L85 PathProgramCache]: Analyzing trace with hash 742899427, now seen corresponding path program 1 times [2024-11-22 02:07:13,817 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:13,817 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [701034645] [2024-11-22 02:07:13,817 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:13,818 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:13,862 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:14,081 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:14,081 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:14,081 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [701034645] [2024-11-22 02:07:14,082 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [701034645] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:14,082 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:14,082 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [7] imperfect sequences [] total 7 [2024-11-22 02:07:14,082 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [709042385] [2024-11-22 02:07:14,082 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:14,082 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 7 states [2024-11-22 02:07:14,083 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:14,084 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 7 interpolants. [2024-11-22 02:07:14,086 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=12, Invalid=30, Unknown=0, NotChecked=0, Total=42 [2024-11-22 02:07:14,087 INFO L87 Difference]: Start difference. First operand 130 states and 174 transitions. Second operand has 7 states, 7 states have (on average 5.571428571428571) internal successors, (39), 7 states have internal predecessors, (39), 3 states have call successors, (9), 2 states have call predecessors, (9), 1 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-22 02:07:14,687 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:14,688 INFO L93 Difference]: Finished difference Result 497 states and 677 transitions. [2024-11-22 02:07:14,688 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-22 02:07:14,688 INFO L78 Accepts]: Start accepts. Automaton has has 7 states, 7 states have (on average 5.571428571428571) internal successors, (39), 7 states have internal predecessors, (39), 3 states have call successors, (9), 2 states have call predecessors, (9), 1 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) Word has length 68 [2024-11-22 02:07:14,689 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:14,696 INFO L225 Difference]: With dead ends: 497 [2024-11-22 02:07:14,697 INFO L226 Difference]: Without dead ends: 390 [2024-11-22 02:07:14,699 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 11 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=31, Invalid=59, Unknown=0, NotChecked=0, Total=90 [2024-11-22 02:07:14,701 INFO L432 NwaCegarLoop]: 191 mSDtfsCounter, 583 mSDsluCounter, 656 mSDsCounter, 0 mSdLazyCounter, 273 mSolverCounterSat, 156 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 583 SdHoareTripleChecker+Valid, 847 SdHoareTripleChecker+Invalid, 429 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 156 IncrementalHoareTripleChecker+Valid, 273 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:14,702 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [583 Valid, 847 Invalid, 429 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [156 Valid, 273 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-22 02:07:14,704 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 390 states. [2024-11-22 02:07:14,745 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 390 to 278. [2024-11-22 02:07:14,746 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 278 states, 197 states have (on average 1.3604060913705585) internal successors, (268), 229 states have internal predecessors, (268), 54 states have call successors, (54), 26 states have call predecessors, (54), 26 states have return successors, (55), 42 states have call predecessors, (55), 54 states have call successors, (55) [2024-11-22 02:07:14,748 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 278 states to 278 states and 377 transitions. [2024-11-22 02:07:14,748 INFO L78 Accepts]: Start accepts. Automaton has 278 states and 377 transitions. Word has length 68 [2024-11-22 02:07:14,749 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:14,749 INFO L471 AbstractCegarLoop]: Abstraction has 278 states and 377 transitions. [2024-11-22 02:07:14,749 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 7 states, 7 states have (on average 5.571428571428571) internal successors, (39), 7 states have internal predecessors, (39), 3 states have call successors, (9), 2 states have call predecessors, (9), 1 states have return successors, (8), 3 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-22 02:07:14,749 INFO L276 IsEmpty]: Start isEmpty. Operand 278 states and 377 transitions. [2024-11-22 02:07:14,752 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 73 [2024-11-22 02:07:14,752 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:14,752 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:14,752 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-22 02:07:14,753 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:14,753 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:14,753 INFO L85 PathProgramCache]: Analyzing trace with hash 999872991, now seen corresponding path program 1 times [2024-11-22 02:07:14,754 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:14,754 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [137714281] [2024-11-22 02:07:14,754 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:14,754 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:14,782 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:14,896 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 2 proven. 0 refuted. 0 times theorem prover too weak. 46 trivial. 0 not checked. [2024-11-22 02:07:14,896 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:14,896 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [137714281] [2024-11-22 02:07:14,897 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [137714281] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:14,897 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:14,897 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2024-11-22 02:07:14,897 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1123099417] [2024-11-22 02:07:14,897 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:14,898 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2024-11-22 02:07:14,898 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:14,899 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2024-11-22 02:07:14,899 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 02:07:14,899 INFO L87 Difference]: Start difference. First operand 278 states and 377 transitions. Second operand has 6 states, 6 states have (on average 7.5) internal successors, (45), 5 states have internal predecessors, (45), 2 states have call successors, (9), 1 states have call predecessors, (9), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-22 02:07:15,077 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:15,078 INFO L93 Difference]: Finished difference Result 655 states and 921 transitions. [2024-11-22 02:07:15,079 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2024-11-22 02:07:15,079 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 7.5) internal successors, (45), 5 states have internal predecessors, (45), 2 states have call successors, (9), 1 states have call predecessors, (9), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) Word has length 72 [2024-11-22 02:07:15,079 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:15,085 INFO L225 Difference]: With dead ends: 655 [2024-11-22 02:07:15,086 INFO L226 Difference]: Without dead ends: 400 [2024-11-22 02:07:15,087 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2024-11-22 02:07:15,088 INFO L432 NwaCegarLoop]: 170 mSDtfsCounter, 133 mSDsluCounter, 554 mSDsCounter, 0 mSdLazyCounter, 97 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 135 SdHoareTripleChecker+Valid, 724 SdHoareTripleChecker+Invalid, 108 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 97 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:15,088 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [135 Valid, 724 Invalid, 108 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 97 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-22 02:07:15,090 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 400 states. [2024-11-22 02:07:15,133 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 400 to 398. [2024-11-22 02:07:15,135 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 398 states, 287 states have (on average 1.3135888501742161) internal successors, (377), 322 states have internal predecessors, (377), 69 states have call successors, (69), 41 states have call predecessors, (69), 41 states have return successors, (91), 64 states have call predecessors, (91), 69 states have call successors, (91) [2024-11-22 02:07:15,139 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 398 states to 398 states and 537 transitions. [2024-11-22 02:07:15,140 INFO L78 Accepts]: Start accepts. Automaton has 398 states and 537 transitions. Word has length 72 [2024-11-22 02:07:15,141 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:15,141 INFO L471 AbstractCegarLoop]: Abstraction has 398 states and 537 transitions. [2024-11-22 02:07:15,141 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 7.5) internal successors, (45), 5 states have internal predecessors, (45), 2 states have call successors, (9), 1 states have call predecessors, (9), 2 states have return successors, (8), 2 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-22 02:07:15,142 INFO L276 IsEmpty]: Start isEmpty. Operand 398 states and 537 transitions. [2024-11-22 02:07:15,144 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 93 [2024-11-22 02:07:15,146 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:15,147 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:15,147 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-22 02:07:15,147 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:15,148 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:15,148 INFO L85 PathProgramCache]: Analyzing trace with hash 997919659, now seen corresponding path program 1 times [2024-11-22 02:07:15,148 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:15,149 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [594894504] [2024-11-22 02:07:15,149 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:15,149 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:15,181 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:15,288 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:15,288 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:15,288 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [594894504] [2024-11-22 02:07:15,289 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [594894504] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:15,289 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:15,290 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-22 02:07:15,290 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1521136423] [2024-11-22 02:07:15,290 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:15,291 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-22 02:07:15,291 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:15,291 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-22 02:07:15,292 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:15,292 INFO L87 Difference]: Start difference. First operand 398 states and 537 transitions. Second operand has 4 states, 4 states have (on average 14.25) internal successors, (57), 4 states have internal predecessors, (57), 4 states have call successors, (12), 2 states have call predecessors, (12), 2 states have return successors, (11), 3 states have call predecessors, (11), 4 states have call successors, (11) [2024-11-22 02:07:15,520 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:15,520 INFO L93 Difference]: Finished difference Result 1453 states and 2050 transitions. [2024-11-22 02:07:15,520 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-22 02:07:15,521 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 14.25) internal successors, (57), 4 states have internal predecessors, (57), 4 states have call successors, (12), 2 states have call predecessors, (12), 2 states have return successors, (11), 3 states have call predecessors, (11), 4 states have call successors, (11) Word has length 92 [2024-11-22 02:07:15,521 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:15,531 INFO L225 Difference]: With dead ends: 1453 [2024-11-22 02:07:15,532 INFO L226 Difference]: Without dead ends: 1078 [2024-11-22 02:07:15,534 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:15,535 INFO L432 NwaCegarLoop]: 310 mSDtfsCounter, 241 mSDsluCounter, 251 mSDsCounter, 0 mSdLazyCounter, 117 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 241 SdHoareTripleChecker+Valid, 561 SdHoareTripleChecker+Invalid, 124 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 117 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:15,537 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [241 Valid, 561 Invalid, 124 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 117 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-22 02:07:15,539 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1078 states. [2024-11-22 02:07:15,618 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1078 to 1057. [2024-11-22 02:07:15,621 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1057 states, 774 states have (on average 1.3036175710594315) internal successors, (1009), 859 states have internal predecessors, (1009), 171 states have call successors, (171), 107 states have call predecessors, (171), 111 states have return successors, (284), 169 states have call predecessors, (284), 171 states have call successors, (284) [2024-11-22 02:07:15,627 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1057 states to 1057 states and 1464 transitions. [2024-11-22 02:07:15,628 INFO L78 Accepts]: Start accepts. Automaton has 1057 states and 1464 transitions. Word has length 92 [2024-11-22 02:07:15,629 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:15,629 INFO L471 AbstractCegarLoop]: Abstraction has 1057 states and 1464 transitions. [2024-11-22 02:07:15,629 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 14.25) internal successors, (57), 4 states have internal predecessors, (57), 4 states have call successors, (12), 2 states have call predecessors, (12), 2 states have return successors, (11), 3 states have call predecessors, (11), 4 states have call successors, (11) [2024-11-22 02:07:15,630 INFO L276 IsEmpty]: Start isEmpty. Operand 1057 states and 1464 transitions. [2024-11-22 02:07:15,632 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 93 [2024-11-22 02:07:15,632 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:15,633 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:15,633 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-22 02:07:15,633 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:15,634 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:15,634 INFO L85 PathProgramCache]: Analyzing trace with hash -388283735, now seen corresponding path program 1 times [2024-11-22 02:07:15,634 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:15,634 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [40301781] [2024-11-22 02:07:15,634 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:15,635 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:15,662 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:15,757 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:15,758 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:15,758 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [40301781] [2024-11-22 02:07:15,759 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [40301781] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:15,759 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:15,760 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-22 02:07:15,760 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [334652881] [2024-11-22 02:07:15,760 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:15,760 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-22 02:07:15,761 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:15,761 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-22 02:07:15,761 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 02:07:15,761 INFO L87 Difference]: Start difference. First operand 1057 states and 1464 transitions. Second operand has 5 states, 5 states have (on average 11.4) internal successors, (57), 5 states have internal predecessors, (57), 2 states have call successors, (12), 1 states have call predecessors, (12), 2 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2024-11-22 02:07:15,841 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:15,842 INFO L93 Difference]: Finished difference Result 2109 states and 3084 transitions. [2024-11-22 02:07:15,842 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-22 02:07:15,843 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 11.4) internal successors, (57), 5 states have internal predecessors, (57), 2 states have call successors, (12), 1 states have call predecessors, (12), 2 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) Word has length 92 [2024-11-22 02:07:15,843 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:15,849 INFO L225 Difference]: With dead ends: 2109 [2024-11-22 02:07:15,849 INFO L226 Difference]: Without dead ends: 1075 [2024-11-22 02:07:15,853 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-22 02:07:15,854 INFO L432 NwaCegarLoop]: 171 mSDtfsCounter, 0 mSDsluCounter, 506 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 677 SdHoareTripleChecker+Invalid, 18 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:15,855 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 677 Invalid, 18 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:15,856 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1075 states. [2024-11-22 02:07:15,914 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1075 to 1075. [2024-11-22 02:07:15,916 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1075 states, 792 states have (on average 1.2967171717171717) internal successors, (1027), 877 states have internal predecessors, (1027), 171 states have call successors, (171), 107 states have call predecessors, (171), 111 states have return successors, (284), 169 states have call predecessors, (284), 171 states have call successors, (284) [2024-11-22 02:07:15,923 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1075 states to 1075 states and 1482 transitions. [2024-11-22 02:07:15,924 INFO L78 Accepts]: Start accepts. Automaton has 1075 states and 1482 transitions. Word has length 92 [2024-11-22 02:07:15,925 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:15,925 INFO L471 AbstractCegarLoop]: Abstraction has 1075 states and 1482 transitions. [2024-11-22 02:07:15,925 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 11.4) internal successors, (57), 5 states have internal predecessors, (57), 2 states have call successors, (12), 1 states have call predecessors, (12), 2 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2024-11-22 02:07:15,925 INFO L276 IsEmpty]: Start isEmpty. Operand 1075 states and 1482 transitions. [2024-11-22 02:07:15,928 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 93 [2024-11-22 02:07:15,928 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:15,928 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:15,928 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-22 02:07:15,929 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:15,929 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:15,929 INFO L85 PathProgramCache]: Analyzing trace with hash 1534944299, now seen corresponding path program 1 times [2024-11-22 02:07:15,930 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:15,930 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [574396932] [2024-11-22 02:07:15,930 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:15,930 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:15,945 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:16,001 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:16,001 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:16,001 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [574396932] [2024-11-22 02:07:16,002 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [574396932] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:16,002 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:16,002 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2024-11-22 02:07:16,002 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1137949052] [2024-11-22 02:07:16,002 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:16,003 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-22 02:07:16,003 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:16,003 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-22 02:07:16,003 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:16,004 INFO L87 Difference]: Start difference. First operand 1075 states and 1482 transitions. Second operand has 4 states, 4 states have (on average 14.25) internal successors, (57), 4 states have internal predecessors, (57), 2 states have call successors, (12), 1 states have call predecessors, (12), 2 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2024-11-22 02:07:16,106 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:16,107 INFO L93 Difference]: Finished difference Result 1955 states and 2813 transitions. [2024-11-22 02:07:16,108 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-22 02:07:16,109 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 14.25) internal successors, (57), 4 states have internal predecessors, (57), 2 states have call successors, (12), 1 states have call predecessors, (12), 2 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) Word has length 92 [2024-11-22 02:07:16,109 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:16,116 INFO L225 Difference]: With dead ends: 1955 [2024-11-22 02:07:16,116 INFO L226 Difference]: Without dead ends: 903 [2024-11-22 02:07:16,122 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:16,124 INFO L432 NwaCegarLoop]: 172 mSDtfsCounter, 0 mSDsluCounter, 338 mSDsCounter, 0 mSdLazyCounter, 11 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 510 SdHoareTripleChecker+Invalid, 11 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 11 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:16,124 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 510 Invalid, 11 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 11 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:16,128 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 903 states. [2024-11-22 02:07:16,201 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 903 to 903. [2024-11-22 02:07:16,203 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 903 states, 662 states have (on average 1.29607250755287) internal successors, (858), 734 states have internal predecessors, (858), 148 states have call successors, (148), 90 states have call predecessors, (148), 92 states have return successors, (233), 140 states have call predecessors, (233), 148 states have call successors, (233) [2024-11-22 02:07:16,208 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 903 states to 903 states and 1239 transitions. [2024-11-22 02:07:16,210 INFO L78 Accepts]: Start accepts. Automaton has 903 states and 1239 transitions. Word has length 92 [2024-11-22 02:07:16,210 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:16,210 INFO L471 AbstractCegarLoop]: Abstraction has 903 states and 1239 transitions. [2024-11-22 02:07:16,211 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 14.25) internal successors, (57), 4 states have internal predecessors, (57), 2 states have call successors, (12), 1 states have call predecessors, (12), 2 states have return successors, (11), 2 states have call predecessors, (11), 2 states have call successors, (11) [2024-11-22 02:07:16,211 INFO L276 IsEmpty]: Start isEmpty. Operand 903 states and 1239 transitions. [2024-11-22 02:07:16,213 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 97 [2024-11-22 02:07:16,213 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:16,213 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:16,213 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2024-11-22 02:07:16,213 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:16,214 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:16,214 INFO L85 PathProgramCache]: Analyzing trace with hash 1664630151, now seen corresponding path program 1 times [2024-11-22 02:07:16,214 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:16,214 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [502872526] [2024-11-22 02:07:16,214 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:16,215 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:16,232 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:16,431 INFO L134 CoverageAnalysis]: Checked inductivity of 48 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2024-11-22 02:07:16,432 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:16,432 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [502872526] [2024-11-22 02:07:16,432 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [502872526] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:16,432 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-22 02:07:16,433 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2024-11-22 02:07:16,433 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1173974233] [2024-11-22 02:07:16,433 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:16,434 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2024-11-22 02:07:16,434 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:16,434 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2024-11-22 02:07:16,435 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=15, Invalid=41, Unknown=0, NotChecked=0, Total=56 [2024-11-22 02:07:16,435 INFO L87 Difference]: Start difference. First operand 903 states and 1239 transitions. Second operand has 8 states, 8 states have (on average 7.375) internal successors, (59), 7 states have internal predecessors, (59), 4 states have call successors, (13), 3 states have call predecessors, (13), 2 states have return successors, (12), 4 states have call predecessors, (12), 4 states have call successors, (12) [2024-11-22 02:07:17,156 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:17,157 INFO L93 Difference]: Finished difference Result 2610 states and 3682 transitions. [2024-11-22 02:07:17,157 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2024-11-22 02:07:17,157 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 8 states have (on average 7.375) internal successors, (59), 7 states have internal predecessors, (59), 4 states have call successors, (13), 3 states have call predecessors, (13), 2 states have return successors, (12), 4 states have call predecessors, (12), 4 states have call successors, (12) Word has length 96 [2024-11-22 02:07:17,158 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:17,168 INFO L225 Difference]: With dead ends: 2610 [2024-11-22 02:07:17,169 INFO L226 Difference]: Without dead ends: 1898 [2024-11-22 02:07:17,173 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 16 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 11 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=47, Invalid=109, Unknown=0, NotChecked=0, Total=156 [2024-11-22 02:07:17,174 INFO L432 NwaCegarLoop]: 207 mSDtfsCounter, 561 mSDsluCounter, 568 mSDsCounter, 0 mSdLazyCounter, 522 mSolverCounterSat, 172 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 574 SdHoareTripleChecker+Valid, 775 SdHoareTripleChecker+Invalid, 694 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 172 IncrementalHoareTripleChecker+Valid, 522 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:17,175 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [574 Valid, 775 Invalid, 694 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [172 Valid, 522 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2024-11-22 02:07:17,177 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1898 states. [2024-11-22 02:07:17,294 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1898 to 1880. [2024-11-22 02:07:17,298 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1880 states, 1385 states have (on average 1.2736462093862815) internal successors, (1764), 1525 states have internal predecessors, (1764), 288 states have call successors, (288), 181 states have call predecessors, (288), 206 states have return successors, (486), 303 states have call predecessors, (486), 288 states have call successors, (486) [2024-11-22 02:07:17,309 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1880 states to 1880 states and 2538 transitions. [2024-11-22 02:07:17,311 INFO L78 Accepts]: Start accepts. Automaton has 1880 states and 2538 transitions. Word has length 96 [2024-11-22 02:07:17,311 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:17,312 INFO L471 AbstractCegarLoop]: Abstraction has 1880 states and 2538 transitions. [2024-11-22 02:07:17,312 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 8 states have (on average 7.375) internal successors, (59), 7 states have internal predecessors, (59), 4 states have call successors, (13), 3 states have call predecessors, (13), 2 states have return successors, (12), 4 states have call predecessors, (12), 4 states have call successors, (12) [2024-11-22 02:07:17,312 INFO L276 IsEmpty]: Start isEmpty. Operand 1880 states and 2538 transitions. [2024-11-22 02:07:17,315 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 137 [2024-11-22 02:07:17,315 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:17,315 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:17,316 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2024-11-22 02:07:17,316 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:17,316 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:17,317 INFO L85 PathProgramCache]: Analyzing trace with hash 534729444, now seen corresponding path program 1 times [2024-11-22 02:07:17,317 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:17,317 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1943349825] [2024-11-22 02:07:17,317 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:17,317 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:17,334 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:17,375 INFO L134 CoverageAnalysis]: Checked inductivity of 83 backedges. 22 proven. 4 refuted. 0 times theorem prover too weak. 57 trivial. 0 not checked. [2024-11-22 02:07:17,375 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:17,375 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1943349825] [2024-11-22 02:07:17,375 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1943349825] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:17,375 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [318891090] [2024-11-22 02:07:17,375 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:17,376 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:17,376 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:17,380 INFO L229 MonitoredProcess]: Starting monitored process 2 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:17,382 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-22 02:07:17,500 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:17,507 INFO L255 TraceCheckSpWp]: Trace formula consists of 443 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 02:07:17,519 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:17,613 INFO L134 CoverageAnalysis]: Checked inductivity of 83 backedges. 38 proven. 0 refuted. 0 times theorem prover too weak. 45 trivial. 0 not checked. [2024-11-22 02:07:17,613 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:07:17,614 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [318891090] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:17,614 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:07:17,614 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [4] total 4 [2024-11-22 02:07:17,614 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1080294401] [2024-11-22 02:07:17,614 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:17,615 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:17,615 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:17,616 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:17,616 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:17,616 INFO L87 Difference]: Start difference. First operand 1880 states and 2538 transitions. Second operand has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 3 states have call successors, (18), 3 states have call predecessors, (18), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-22 02:07:17,761 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:17,764 INFO L93 Difference]: Finished difference Result 3984 states and 5521 transitions. [2024-11-22 02:07:17,764 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:17,765 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 3 states have call successors, (18), 3 states have call predecessors, (18), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) Word has length 136 [2024-11-22 02:07:17,765 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:17,776 INFO L225 Difference]: With dead ends: 3984 [2024-11-22 02:07:17,776 INFO L226 Difference]: Without dead ends: 2127 [2024-11-22 02:07:17,781 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 139 GetRequests, 137 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:17,782 INFO L432 NwaCegarLoop]: 249 mSDtfsCounter, 93 mSDsluCounter, 101 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 93 SdHoareTripleChecker+Valid, 350 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:17,782 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [93 Valid, 350 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:17,784 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2127 states. [2024-11-22 02:07:17,902 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2127 to 1974. [2024-11-22 02:07:17,906 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 1974 states, 1464 states have (on average 1.258879781420765) internal successors, (1843), 1597 states have internal predecessors, (1843), 290 states have call successors, (290), 192 states have call predecessors, (290), 219 states have return successors, (492), 302 states have call predecessors, (492), 290 states have call successors, (492) [2024-11-22 02:07:17,913 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 1974 states to 1974 states and 2625 transitions. [2024-11-22 02:07:17,916 INFO L78 Accepts]: Start accepts. Automaton has 1974 states and 2625 transitions. Word has length 136 [2024-11-22 02:07:17,917 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:17,917 INFO L471 AbstractCegarLoop]: Abstraction has 1974 states and 2625 transitions. [2024-11-22 02:07:17,917 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 30.333333333333332) internal successors, (91), 3 states have internal predecessors, (91), 3 states have call successors, (18), 3 states have call predecessors, (18), 3 states have return successors, (17), 3 states have call predecessors, (17), 3 states have call successors, (17) [2024-11-22 02:07:17,917 INFO L276 IsEmpty]: Start isEmpty. Operand 1974 states and 2625 transitions. [2024-11-22 02:07:17,921 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 139 [2024-11-22 02:07:17,921 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:17,922 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:17,932 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Ended with exit code 0 [2024-11-22 02:07:18,122 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,2 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:18,123 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:18,123 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:18,124 INFO L85 PathProgramCache]: Analyzing trace with hash -727153918, now seen corresponding path program 1 times [2024-11-22 02:07:18,124 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:18,124 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1456658566] [2024-11-22 02:07:18,124 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:18,125 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:18,152 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:18,391 INFO L134 CoverageAnalysis]: Checked inductivity of 85 backedges. 20 proven. 11 refuted. 0 times theorem prover too weak. 54 trivial. 0 not checked. [2024-11-22 02:07:18,392 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:18,392 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1456658566] [2024-11-22 02:07:18,392 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1456658566] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:18,392 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [119502854] [2024-11-22 02:07:18,393 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:18,393 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:18,393 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:18,395 INFO L229 MonitoredProcess]: Starting monitored process 3 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:18,397 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-22 02:07:18,518 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:18,523 INFO L255 TraceCheckSpWp]: Trace formula consists of 444 conjuncts, 8 conjuncts are in the unsatisfiable core [2024-11-22 02:07:18,527 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:18,702 INFO L134 CoverageAnalysis]: Checked inductivity of 85 backedges. 28 proven. 12 refuted. 0 times theorem prover too weak. 45 trivial. 0 not checked. [2024-11-22 02:07:18,703 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-22 02:07:18,969 INFO L134 CoverageAnalysis]: Checked inductivity of 85 backedges. 20 proven. 11 refuted. 0 times theorem prover too weak. 54 trivial. 0 not checked. [2024-11-22 02:07:18,970 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [119502854] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-22 02:07:18,970 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-22 02:07:18,970 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 15 [2024-11-22 02:07:18,970 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [137601707] [2024-11-22 02:07:18,970 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-22 02:07:18,971 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 15 states [2024-11-22 02:07:18,971 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:18,972 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 15 interpolants. [2024-11-22 02:07:18,972 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=36, Invalid=174, Unknown=0, NotChecked=0, Total=210 [2024-11-22 02:07:18,972 INFO L87 Difference]: Start difference. First operand 1974 states and 2625 transitions. Second operand has 15 states, 15 states have (on average 9.866666666666667) internal successors, (148), 13 states have internal predecessors, (148), 6 states have call successors, (32), 4 states have call predecessors, (32), 7 states have return successors, (35), 9 states have call predecessors, (35), 6 states have call successors, (35) [2024-11-22 02:07:19,932 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:19,933 INFO L93 Difference]: Finished difference Result 4052 states and 5547 transitions. [2024-11-22 02:07:19,933 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 23 states. [2024-11-22 02:07:19,934 INFO L78 Accepts]: Start accepts. Automaton has has 15 states, 15 states have (on average 9.866666666666667) internal successors, (148), 13 states have internal predecessors, (148), 6 states have call successors, (32), 4 states have call predecessors, (32), 7 states have return successors, (35), 9 states have call predecessors, (35), 6 states have call successors, (35) Word has length 138 [2024-11-22 02:07:19,934 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:19,953 INFO L225 Difference]: With dead ends: 4052 [2024-11-22 02:07:19,953 INFO L226 Difference]: Without dead ends: 2564 [2024-11-22 02:07:19,963 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 311 GetRequests, 275 SyntacticMatches, 4 SemanticMatches, 32 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 226 ImplicationChecksByTransitivity, 0.3s TimeCoverageRelationStatistics Valid=229, Invalid=893, Unknown=0, NotChecked=0, Total=1122 [2024-11-22 02:07:19,964 INFO L432 NwaCegarLoop]: 316 mSDtfsCounter, 402 mSDsluCounter, 2597 mSDsCounter, 0 mSdLazyCounter, 760 mSolverCounterSat, 128 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 404 SdHoareTripleChecker+Valid, 2913 SdHoareTripleChecker+Invalid, 888 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 128 IncrementalHoareTripleChecker+Valid, 760 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:19,965 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [404 Valid, 2913 Invalid, 888 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [128 Valid, 760 Invalid, 0 Unknown, 0 Unchecked, 0.6s Time] [2024-11-22 02:07:19,967 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2564 states. [2024-11-22 02:07:20,151 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2564 to 2324. [2024-11-22 02:07:20,155 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2324 states, 1719 states have (on average 1.2536358347876673) internal successors, (2155), 1879 states have internal predecessors, (2155), 334 states have call successors, (334), 242 states have call predecessors, (334), 270 states have return successors, (507), 344 states have call predecessors, (507), 334 states have call successors, (507) [2024-11-22 02:07:20,163 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2324 states to 2324 states and 2996 transitions. [2024-11-22 02:07:20,167 INFO L78 Accepts]: Start accepts. Automaton has 2324 states and 2996 transitions. Word has length 138 [2024-11-22 02:07:20,167 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:20,167 INFO L471 AbstractCegarLoop]: Abstraction has 2324 states and 2996 transitions. [2024-11-22 02:07:20,168 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 15 states, 15 states have (on average 9.866666666666667) internal successors, (148), 13 states have internal predecessors, (148), 6 states have call successors, (32), 4 states have call predecessors, (32), 7 states have return successors, (35), 9 states have call predecessors, (35), 6 states have call successors, (35) [2024-11-22 02:07:20,168 INFO L276 IsEmpty]: Start isEmpty. Operand 2324 states and 2996 transitions. [2024-11-22 02:07:20,176 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 230 [2024-11-22 02:07:20,177 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:20,177 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:20,186 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-22 02:07:20,380 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-22 02:07:20,381 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:20,382 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:20,382 INFO L85 PathProgramCache]: Analyzing trace with hash -729053252, now seen corresponding path program 1 times [2024-11-22 02:07:20,382 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:20,382 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1525509908] [2024-11-22 02:07:20,382 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:20,382 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:20,409 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:20,462 INFO L134 CoverageAnalysis]: Checked inductivity of 254 backedges. 92 proven. 15 refuted. 0 times theorem prover too weak. 147 trivial. 0 not checked. [2024-11-22 02:07:20,462 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:20,462 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1525509908] [2024-11-22 02:07:20,463 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1525509908] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:20,464 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [110513162] [2024-11-22 02:07:20,464 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:20,465 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:20,465 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:20,467 INFO L229 MonitoredProcess]: Starting monitored process 4 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:20,469 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-22 02:07:20,615 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:20,618 INFO L255 TraceCheckSpWp]: Trace formula consists of 658 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 02:07:20,626 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:20,733 INFO L134 CoverageAnalysis]: Checked inductivity of 254 backedges. 163 proven. 0 refuted. 0 times theorem prover too weak. 91 trivial. 0 not checked. [2024-11-22 02:07:20,733 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:07:20,733 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [110513162] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:20,734 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:07:20,734 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [4] total 4 [2024-11-22 02:07:20,734 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1408233031] [2024-11-22 02:07:20,734 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:20,735 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:20,735 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:20,735 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:20,736 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:20,736 INFO L87 Difference]: Start difference. First operand 2324 states and 2996 transitions. Second operand has 3 states, 3 states have (on average 44.0) internal successors, (132), 3 states have internal predecessors, (132), 3 states have call successors, (23), 3 states have call predecessors, (23), 3 states have return successors, (23), 3 states have call predecessors, (23), 3 states have call successors, (23) [2024-11-22 02:07:21,013 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:21,015 INFO L93 Difference]: Finished difference Result 6789 states and 8934 transitions. [2024-11-22 02:07:21,015 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:21,016 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 44.0) internal successors, (132), 3 states have internal predecessors, (132), 3 states have call successors, (23), 3 states have call predecessors, (23), 3 states have return successors, (23), 3 states have call predecessors, (23), 3 states have call successors, (23) Word has length 229 [2024-11-22 02:07:21,016 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:21,044 INFO L225 Difference]: With dead ends: 6789 [2024-11-22 02:07:21,045 INFO L226 Difference]: Without dead ends: 4488 [2024-11-22 02:07:21,056 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 232 GetRequests, 230 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:21,057 INFO L432 NwaCegarLoop]: 225 mSDtfsCounter, 91 mSDsluCounter, 155 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 91 SdHoareTripleChecker+Valid, 380 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:21,057 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [91 Valid, 380 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:21,062 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4488 states. [2024-11-22 02:07:21,389 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4488 to 4486. [2024-11-22 02:07:21,398 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4486 states, 3341 states have (on average 1.2532175995211015) internal successors, (4187), 3614 states have internal predecessors, (4187), 610 states have call successors, (610), 478 states have call predecessors, (610), 534 states have return successors, (1030), 612 states have call predecessors, (1030), 610 states have call successors, (1030) [2024-11-22 02:07:21,413 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4486 states to 4486 states and 5827 transitions. [2024-11-22 02:07:21,418 INFO L78 Accepts]: Start accepts. Automaton has 4486 states and 5827 transitions. Word has length 229 [2024-11-22 02:07:21,419 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:21,419 INFO L471 AbstractCegarLoop]: Abstraction has 4486 states and 5827 transitions. [2024-11-22 02:07:21,419 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 44.0) internal successors, (132), 3 states have internal predecessors, (132), 3 states have call successors, (23), 3 states have call predecessors, (23), 3 states have return successors, (23), 3 states have call predecessors, (23), 3 states have call successors, (23) [2024-11-22 02:07:21,419 INFO L276 IsEmpty]: Start isEmpty. Operand 4486 states and 5827 transitions. [2024-11-22 02:07:21,435 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 243 [2024-11-22 02:07:21,435 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:21,435 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:21,446 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2024-11-22 02:07:21,636 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable10,4 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:21,636 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:21,637 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:21,637 INFO L85 PathProgramCache]: Analyzing trace with hash 1337583832, now seen corresponding path program 1 times [2024-11-22 02:07:21,637 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:21,637 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [409019164] [2024-11-22 02:07:21,637 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:21,637 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:21,662 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:21,728 INFO L134 CoverageAnalysis]: Checked inductivity of 263 backedges. 91 proven. 16 refuted. 0 times theorem prover too weak. 156 trivial. 0 not checked. [2024-11-22 02:07:21,729 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:21,729 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [409019164] [2024-11-22 02:07:21,729 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [409019164] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:21,729 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [663579359] [2024-11-22 02:07:21,729 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:21,729 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:21,729 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:21,731 INFO L229 MonitoredProcess]: Starting monitored process 5 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:21,734 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-22 02:07:21,887 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:21,890 INFO L255 TraceCheckSpWp]: Trace formula consists of 691 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 02:07:21,897 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:22,018 INFO L134 CoverageAnalysis]: Checked inductivity of 263 backedges. 167 proven. 0 refuted. 0 times theorem prover too weak. 96 trivial. 0 not checked. [2024-11-22 02:07:22,018 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:07:22,018 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [663579359] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:22,019 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:07:22,019 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [4] total 4 [2024-11-22 02:07:22,020 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1883245036] [2024-11-22 02:07:22,021 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:22,021 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:22,021 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:22,022 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:22,022 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:22,022 INFO L87 Difference]: Start difference. First operand 4486 states and 5827 transitions. Second operand has 3 states, 3 states have (on average 47.0) internal successors, (141), 3 states have internal predecessors, (141), 3 states have call successors, (24), 3 states have call predecessors, (24), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2024-11-22 02:07:22,299 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:22,300 INFO L93 Difference]: Finished difference Result 6804 states and 8792 transitions. [2024-11-22 02:07:22,300 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:22,300 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 47.0) internal successors, (141), 3 states have internal predecessors, (141), 3 states have call successors, (24), 3 states have call predecessors, (24), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) Word has length 242 [2024-11-22 02:07:22,301 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:22,330 INFO L225 Difference]: With dead ends: 6804 [2024-11-22 02:07:22,330 INFO L226 Difference]: Without dead ends: 4623 [2024-11-22 02:07:22,341 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 245 GetRequests, 243 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:22,342 INFO L432 NwaCegarLoop]: 303 mSDtfsCounter, 76 mSDsluCounter, 156 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 76 SdHoareTripleChecker+Valid, 459 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:22,343 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [76 Valid, 459 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:22,348 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 4623 states. [2024-11-22 02:07:22,768 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 4623 to 4621. [2024-11-22 02:07:22,781 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4621 states, 3447 states have (on average 1.2494923121554975) internal successors, (4307), 3725 states have internal predecessors, (4307), 626 states have call successors, (626), 493 states have call predecessors, (626), 547 states have return successors, (946), 625 states have call predecessors, (946), 626 states have call successors, (946) [2024-11-22 02:07:22,802 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4621 states to 4621 states and 5879 transitions. [2024-11-22 02:07:22,810 INFO L78 Accepts]: Start accepts. Automaton has 4621 states and 5879 transitions. Word has length 242 [2024-11-22 02:07:22,811 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:22,811 INFO L471 AbstractCegarLoop]: Abstraction has 4621 states and 5879 transitions. [2024-11-22 02:07:22,811 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 47.0) internal successors, (141), 3 states have internal predecessors, (141), 3 states have call successors, (24), 3 states have call predecessors, (24), 3 states have return successors, (24), 3 states have call predecessors, (24), 3 states have call successors, (24) [2024-11-22 02:07:22,812 INFO L276 IsEmpty]: Start isEmpty. Operand 4621 states and 5879 transitions. [2024-11-22 02:07:22,830 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 236 [2024-11-22 02:07:22,830 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:22,831 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:22,840 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-22 02:07:23,031 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable11,5 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:23,032 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:23,032 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:23,032 INFO L85 PathProgramCache]: Analyzing trace with hash 426442613, now seen corresponding path program 1 times [2024-11-22 02:07:23,032 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:23,032 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2115278111] [2024-11-22 02:07:23,033 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:23,033 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:23,070 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:23,137 INFO L134 CoverageAnalysis]: Checked inductivity of 270 backedges. 96 proven. 24 refuted. 0 times theorem prover too weak. 150 trivial. 0 not checked. [2024-11-22 02:07:23,137 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:23,137 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2115278111] [2024-11-22 02:07:23,138 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2115278111] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:23,138 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1727095609] [2024-11-22 02:07:23,138 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:23,138 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:23,139 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:23,141 INFO L229 MonitoredProcess]: Starting monitored process 6 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:23,143 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-22 02:07:23,307 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:23,311 INFO L255 TraceCheckSpWp]: Trace formula consists of 673 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 02:07:23,316 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:23,441 INFO L134 CoverageAnalysis]: Checked inductivity of 270 backedges. 177 proven. 0 refuted. 0 times theorem prover too weak. 93 trivial. 0 not checked. [2024-11-22 02:07:23,441 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:07:23,441 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1727095609] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:23,442 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:07:23,442 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [4] total 4 [2024-11-22 02:07:23,443 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1547499369] [2024-11-22 02:07:23,443 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:23,444 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:23,444 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:23,445 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:23,445 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:23,446 INFO L87 Difference]: Start difference. First operand 4621 states and 5879 transitions. Second operand has 3 states, 3 states have (on average 45.0) internal successors, (135), 3 states have internal predecessors, (135), 3 states have call successors, (24), 3 states have call predecessors, (24), 3 states have return successors, (25), 3 states have call predecessors, (25), 3 states have call successors, (25) [2024-11-22 02:07:23,938 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:23,938 INFO L93 Difference]: Finished difference Result 13060 states and 17037 transitions. [2024-11-22 02:07:23,939 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:23,939 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 45.0) internal successors, (135), 3 states have internal predecessors, (135), 3 states have call successors, (24), 3 states have call predecessors, (24), 3 states have return successors, (25), 3 states have call predecessors, (25), 3 states have call successors, (25) Word has length 235 [2024-11-22 02:07:23,940 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:24,025 INFO L225 Difference]: With dead ends: 13060 [2024-11-22 02:07:24,026 INFO L226 Difference]: Without dead ends: 8600 [2024-11-22 02:07:24,040 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 238 GetRequests, 236 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:24,041 INFO L432 NwaCegarLoop]: 233 mSDtfsCounter, 83 mSDsluCounter, 161 mSDsCounter, 0 mSdLazyCounter, 3 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 83 SdHoareTripleChecker+Valid, 394 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 3 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:24,042 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [83 Valid, 394 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 3 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:24,049 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 8600 states. [2024-11-22 02:07:24,570 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 8600 to 8573. [2024-11-22 02:07:24,584 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 8573 states, 6424 states have (on average 1.2447073474470736) internal successors, (7996), 6864 states have internal predecessors, (7996), 1107 states have call successors, (1107), 945 states have call predecessors, (1107), 1041 states have return successors, (1907), 1087 states have call predecessors, (1907), 1107 states have call successors, (1907) [2024-11-22 02:07:24,621 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 8573 states to 8573 states and 11010 transitions. [2024-11-22 02:07:24,630 INFO L78 Accepts]: Start accepts. Automaton has 8573 states and 11010 transitions. Word has length 235 [2024-11-22 02:07:24,631 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:24,631 INFO L471 AbstractCegarLoop]: Abstraction has 8573 states and 11010 transitions. [2024-11-22 02:07:24,631 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 45.0) internal successors, (135), 3 states have internal predecessors, (135), 3 states have call successors, (24), 3 states have call predecessors, (24), 3 states have return successors, (25), 3 states have call predecessors, (25), 3 states have call successors, (25) [2024-11-22 02:07:24,631 INFO L276 IsEmpty]: Start isEmpty. Operand 8573 states and 11010 transitions. [2024-11-22 02:07:24,659 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 245 [2024-11-22 02:07:24,659 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:24,659 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:24,668 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-22 02:07:24,863 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2024-11-22 02:07:24,863 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:24,864 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:24,864 INFO L85 PathProgramCache]: Analyzing trace with hash 1241472268, now seen corresponding path program 1 times [2024-11-22 02:07:24,864 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:24,864 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1696494044] [2024-11-22 02:07:24,864 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:24,865 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:24,893 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:24,955 INFO L134 CoverageAnalysis]: Checked inductivity of 271 backedges. 63 proven. 18 refuted. 0 times theorem prover too weak. 190 trivial. 0 not checked. [2024-11-22 02:07:24,955 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:24,955 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1696494044] [2024-11-22 02:07:24,956 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1696494044] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:24,956 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1091977987] [2024-11-22 02:07:24,956 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:24,956 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:24,956 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:24,959 INFO L229 MonitoredProcess]: Starting monitored process 7 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:24,961 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-22 02:07:25,217 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:25,219 INFO L255 TraceCheckSpWp]: Trace formula consists of 698 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 02:07:25,227 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:25,251 INFO L134 CoverageAnalysis]: Checked inductivity of 271 backedges. 57 proven. 0 refuted. 0 times theorem prover too weak. 214 trivial. 0 not checked. [2024-11-22 02:07:25,251 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:07:25,251 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1091977987] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:25,252 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:07:25,252 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [4] total 4 [2024-11-22 02:07:25,252 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [318635129] [2024-11-22 02:07:25,252 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:25,253 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:25,253 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:25,254 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:25,254 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:25,255 INFO L87 Difference]: Start difference. First operand 8573 states and 11010 transitions. Second operand has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (19), 3 states have call predecessors, (19), 3 states have call successors, (19) [2024-11-22 02:07:25,719 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:25,720 INFO L93 Difference]: Finished difference Result 13524 states and 17358 transitions. [2024-11-22 02:07:25,721 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:25,721 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (19), 3 states have call predecessors, (19), 3 states have call successors, (19) Word has length 244 [2024-11-22 02:07:25,721 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:25,778 INFO L225 Difference]: With dead ends: 13524 [2024-11-22 02:07:25,778 INFO L226 Difference]: Without dead ends: 5113 [2024-11-22 02:07:25,813 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 247 GetRequests, 245 SyntacticMatches, 0 SemanticMatches, 2 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-22 02:07:25,813 INFO L432 NwaCegarLoop]: 213 mSDtfsCounter, 39 mSDsluCounter, 168 mSDsCounter, 0 mSdLazyCounter, 5 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 39 SdHoareTripleChecker+Valid, 381 SdHoareTripleChecker+Invalid, 5 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 5 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:25,814 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [39 Valid, 381 Invalid, 5 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 5 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:25,819 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 5113 states. [2024-11-22 02:07:26,217 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 5113 to 5053. [2024-11-22 02:07:26,223 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 5053 states, 3804 states have (on average 1.2352786540483702) internal successors, (4699), 4068 states have internal predecessors, (4699), 649 states have call successors, (649), 556 states have call predecessors, (649), 599 states have return successors, (972), 625 states have call predecessors, (972), 649 states have call successors, (972) [2024-11-22 02:07:26,235 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 5053 states to 5053 states and 6320 transitions. [2024-11-22 02:07:26,242 INFO L78 Accepts]: Start accepts. Automaton has 5053 states and 6320 transitions. Word has length 244 [2024-11-22 02:07:26,243 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:26,243 INFO L471 AbstractCegarLoop]: Abstraction has 5053 states and 6320 transitions. [2024-11-22 02:07:26,244 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 33.0) internal successors, (99), 3 states have internal predecessors, (99), 3 states have call successors, (19), 3 states have call predecessors, (19), 3 states have return successors, (19), 3 states have call predecessors, (19), 3 states have call successors, (19) [2024-11-22 02:07:26,244 INFO L276 IsEmpty]: Start isEmpty. Operand 5053 states and 6320 transitions. [2024-11-22 02:07:26,257 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 245 [2024-11-22 02:07:26,257 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:26,258 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:26,268 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Forceful destruction successful, exit code 0 [2024-11-22 02:07:26,458 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13,7 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:26,459 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:26,459 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:26,459 INFO L85 PathProgramCache]: Analyzing trace with hash -463194900, now seen corresponding path program 1 times [2024-11-22 02:07:26,459 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:26,459 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [770222496] [2024-11-22 02:07:26,460 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:26,460 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:26,485 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:26,585 INFO L134 CoverageAnalysis]: Checked inductivity of 278 backedges. 86 proven. 2 refuted. 0 times theorem prover too weak. 190 trivial. 0 not checked. [2024-11-22 02:07:26,585 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:26,585 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [770222496] [2024-11-22 02:07:26,586 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [770222496] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:26,586 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1718246850] [2024-11-22 02:07:26,586 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:26,586 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:26,586 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:26,589 INFO L229 MonitoredProcess]: Starting monitored process 8 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:26,590 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-11-22 02:07:26,741 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:26,745 INFO L255 TraceCheckSpWp]: Trace formula consists of 697 conjuncts, 3 conjuncts are in the unsatisfiable core [2024-11-22 02:07:26,749 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:26,895 INFO L134 CoverageAnalysis]: Checked inductivity of 278 backedges. 122 proven. 0 refuted. 0 times theorem prover too weak. 156 trivial. 0 not checked. [2024-11-22 02:07:26,895 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-22 02:07:26,895 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1718246850] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-22 02:07:26,895 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2024-11-22 02:07:26,896 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2024-11-22 02:07:26,896 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1273086278] [2024-11-22 02:07:26,896 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-22 02:07:26,896 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-22 02:07:26,897 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:26,897 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-22 02:07:26,897 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 02:07:26,898 INFO L87 Difference]: Start difference. First operand 5053 states and 6320 transitions. Second operand has 3 states, 3 states have (on average 40.0) internal successors, (120), 3 states have internal predecessors, (120), 3 states have call successors, (22), 3 states have call predecessors, (22), 3 states have return successors, (23), 3 states have call predecessors, (23), 3 states have call successors, (23) [2024-11-22 02:07:27,148 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:27,149 INFO L93 Difference]: Finished difference Result 7404 states and 9205 transitions. [2024-11-22 02:07:27,149 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-22 02:07:27,149 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 40.0) internal successors, (120), 3 states have internal predecessors, (120), 3 states have call successors, (22), 3 states have call predecessors, (22), 3 states have return successors, (23), 3 states have call predecessors, (23), 3 states have call successors, (23) Word has length 244 [2024-11-22 02:07:27,150 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:27,188 INFO L225 Difference]: With dead ends: 7404 [2024-11-22 02:07:27,188 INFO L226 Difference]: Without dead ends: 5065 [2024-11-22 02:07:27,200 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 248 GetRequests, 244 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2024-11-22 02:07:27,201 INFO L432 NwaCegarLoop]: 303 mSDtfsCounter, 67 mSDsluCounter, 154 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 67 SdHoareTripleChecker+Valid, 457 SdHoareTripleChecker+Invalid, 4 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:27,201 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [67 Valid, 457 Invalid, 4 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-22 02:07:27,206 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 5065 states. [2024-11-22 02:07:27,518 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 5065 to 4915. [2024-11-22 02:07:27,524 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 4915 states, 3700 states have (on average 1.2313513513513514) internal successors, (4556), 3956 states have internal predecessors, (4556), 635 states have call successors, (635), 545 states have call predecessors, (635), 579 states have return successors, (853), 604 states have call predecessors, (853), 635 states have call successors, (853) [2024-11-22 02:07:27,537 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 4915 states to 4915 states and 6044 transitions. [2024-11-22 02:07:27,544 INFO L78 Accepts]: Start accepts. Automaton has 4915 states and 6044 transitions. Word has length 244 [2024-11-22 02:07:27,545 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:27,545 INFO L471 AbstractCegarLoop]: Abstraction has 4915 states and 6044 transitions. [2024-11-22 02:07:27,545 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 40.0) internal successors, (120), 3 states have internal predecessors, (120), 3 states have call successors, (22), 3 states have call predecessors, (22), 3 states have return successors, (23), 3 states have call predecessors, (23), 3 states have call successors, (23) [2024-11-22 02:07:27,545 INFO L276 IsEmpty]: Start isEmpty. Operand 4915 states and 6044 transitions. [2024-11-22 02:07:27,559 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 243 [2024-11-22 02:07:27,559 INFO L207 NwaCegarLoop]: Found error trace [2024-11-22 02:07:27,559 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:27,569 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-11-22 02:07:27,760 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14,8 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:27,760 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-22 02:07:27,761 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-22 02:07:27,761 INFO L85 PathProgramCache]: Analyzing trace with hash -596601686, now seen corresponding path program 1 times [2024-11-22 02:07:27,761 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-22 02:07:27,761 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [252783687] [2024-11-22 02:07:27,761 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:27,761 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-22 02:07:27,782 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:28,119 INFO L134 CoverageAnalysis]: Checked inductivity of 271 backedges. 117 proven. 38 refuted. 0 times theorem prover too weak. 116 trivial. 0 not checked. [2024-11-22 02:07:28,120 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-22 02:07:28,120 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [252783687] [2024-11-22 02:07:28,120 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [252783687] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-22 02:07:28,120 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1339179441] [2024-11-22 02:07:28,120 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-22 02:07:28,121 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-22 02:07:28,121 INFO L189 MonitoredProcess]: No working directory specified, using /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 [2024-11-22 02:07:28,123 INFO L229 MonitoredProcess]: Starting monitored process 9 with /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-22 02:07:28,124 INFO L327 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-11-22 02:07:28,277 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-22 02:07:28,284 INFO L255 TraceCheckSpWp]: Trace formula consists of 685 conjuncts, 13 conjuncts are in the unsatisfiable core [2024-11-22 02:07:28,288 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-22 02:07:28,491 INFO L134 CoverageAnalysis]: Checked inductivity of 271 backedges. 167 proven. 4 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2024-11-22 02:07:28,491 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-22 02:07:29,079 INFO L134 CoverageAnalysis]: Checked inductivity of 271 backedges. 89 proven. 43 refuted. 0 times theorem prover too weak. 139 trivial. 0 not checked. [2024-11-22 02:07:29,080 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1339179441] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-22 02:07:29,080 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-22 02:07:29,080 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 10, 11] total 23 [2024-11-22 02:07:29,080 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1257559656] [2024-11-22 02:07:29,081 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-22 02:07:29,081 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-11-22 02:07:29,082 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-22 02:07:29,083 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-11-22 02:07:29,083 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=115, Invalid=391, Unknown=0, NotChecked=0, Total=506 [2024-11-22 02:07:29,083 INFO L87 Difference]: Start difference. First operand 4915 states and 6044 transitions. Second operand has 23 states, 23 states have (on average 12.043478260869565) internal successors, (277), 22 states have internal predecessors, (277), 12 states have call successors, (61), 7 states have call predecessors, (61), 12 states have return successors, (63), 12 states have call predecessors, (63), 12 states have call successors, (63) [2024-11-22 02:07:30,429 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-22 02:07:30,429 INFO L93 Difference]: Finished difference Result 11044 states and 13985 transitions. [2024-11-22 02:07:30,429 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 18 states. [2024-11-22 02:07:30,430 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 23 states have (on average 12.043478260869565) internal successors, (277), 22 states have internal predecessors, (277), 12 states have call successors, (61), 7 states have call predecessors, (61), 12 states have return successors, (63), 12 states have call predecessors, (63), 12 states have call successors, (63) Word has length 242 [2024-11-22 02:07:30,430 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-22 02:07:30,441 INFO L225 Difference]: With dead ends: 11044 [2024-11-22 02:07:30,441 INFO L226 Difference]: Without dead ends: 0 [2024-11-22 02:07:30,461 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 514 GetRequests, 477 SyntacticMatches, 3 SemanticMatches, 34 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 215 ImplicationChecksByTransitivity, 0.4s TimeCoverageRelationStatistics Valid=294, Invalid=966, Unknown=0, NotChecked=0, Total=1260 [2024-11-22 02:07:30,462 INFO L432 NwaCegarLoop]: 142 mSDtfsCounter, 460 mSDsluCounter, 1084 mSDsCounter, 0 mSdLazyCounter, 1764 mSolverCounterSat, 220 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 466 SdHoareTripleChecker+Valid, 1226 SdHoareTripleChecker+Invalid, 1984 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 220 IncrementalHoareTripleChecker+Valid, 1764 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2024-11-22 02:07:30,462 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [466 Valid, 1226 Invalid, 1984 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [220 Valid, 1764 Invalid, 0 Unknown, 0 Unchecked, 0.9s Time] [2024-11-22 02:07:30,462 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2024-11-22 02:07:30,462 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2024-11-22 02:07:30,462 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-22 02:07:30,463 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2024-11-22 02:07:30,471 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 242 [2024-11-22 02:07:30,471 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-22 02:07:30,471 INFO L471 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2024-11-22 02:07:30,472 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 23 states have (on average 12.043478260869565) internal successors, (277), 22 states have internal predecessors, (277), 12 states have call successors, (61), 7 states have call predecessors, (61), 12 states have return successors, (63), 12 states have call predecessors, (63), 12 states have call successors, (63) [2024-11-22 02:07:30,472 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2024-11-22 02:07:30,472 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2024-11-22 02:07:30,477 INFO L782 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-22 02:07:30,486 INFO L552 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-11-22 02:07:30,678 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 9 /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2024-11-22 02:07:30,680 INFO L407 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-22 02:07:30,682 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2024-11-22 02:08:17,602 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-22 02:08:17,624 WARN L156 FloydHoareUtils]: Requires clause for deactivatePump contained old-variable. Original clause: (and (let ((.cse0 (= |old(~pumpRunning~0)| 1)) (.cse1 (<= ~waterLevel~0 2)) (.cse2 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse3 (= ~__SELECTED_FEATURE_base~0 1)) (.cse4 (not (= 0 ~systemActive~0)))) (or (and (= 1 ~systemActive~0) .cse0 .cse1 .cse2 (<= 1 ~switchedOnBeforeTS~0) .cse3) (and (= 2 ~waterLevel~0) .cse0 .cse2 .cse3 .cse4) (and (not (= ~switchedOnBeforeTS~0 0)) .cse0 (= ~__SELECTED_FEATURE_methaneAlarm~0 0) .cse1 .cse2 (= ~__SELECTED_FEATURE_lowWaterSensor~0 0) .cse3 .cse4))) (= ~pumpRunning~0 1)) Eliminated clause: (and (let ((.cse3 (not (= 0 ~systemActive~0))) (.cse0 (<= ~waterLevel~0 2)) (.cse1 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse2 (= ~__SELECTED_FEATURE_base~0 1))) (or (and (not (= ~switchedOnBeforeTS~0 0)) (= ~__SELECTED_FEATURE_methaneAlarm~0 0) .cse0 .cse1 (= ~__SELECTED_FEATURE_lowWaterSensor~0 0) .cse2 .cse3) (and (= 2 ~waterLevel~0) .cse1 .cse2 .cse3) (and (= 1 ~systemActive~0) .cse0 .cse1 (<= 1 ~switchedOnBeforeTS~0) .cse2))) (= ~pumpRunning~0 1)) [2024-11-22 02:08:17,635 WARN L156 FloydHoareUtils]: Requires clause for activatePump__before__methaneQuery contained old-variable. Original clause: (and (= ~pumpRunning~0 0) (= 2 ~waterLevel~0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0)) (= ~__SELECTED_FEATURE_base~0 1)) Eliminated clause: (and (= ~pumpRunning~0 0) (= 2 ~waterLevel~0) (= 1 ~systemActive~0) (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0)) (= ~__SELECTED_FEATURE_base~0 1)) [2024-11-22 02:08:17,661 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__before__lowWaterSensor contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (<= ~waterLevel~0 1)) (.cse4 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse2 (= 1 ~systemActive~0)) (.cse5 (= ~__SELECTED_FEATURE_base~0 1))) (or (and .cse1 .cse2 .cse3 .cse4 (<= 1 ~switchedOnBeforeTS~0) .cse5) (and .cse1 .cse2 .cse0 .cse4 .cse5) (and .cse2 .cse0 (= ~waterLevel~0 1) .cse5) (and (= 2 ~waterLevel~0) .cse2 .cse0 .cse5))) (or (not .cse3) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (<= ~waterLevel~0 1)) (.cse4 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse2 (= 1 ~systemActive~0)) (.cse5 (= ~__SELECTED_FEATURE_base~0 1))) (or (and .cse1 .cse2 .cse3 .cse4 (<= 1 ~switchedOnBeforeTS~0) .cse5) (and .cse1 .cse2 .cse0 .cse4 .cse5) (and .cse2 .cse0 (= ~waterLevel~0 1) .cse5) (and (= 2 ~waterLevel~0) .cse2 .cse0 .cse5))) (or (not .cse3) (= ~pumpRunning~0 1))))) [2024-11-22 02:08:17,671 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-22 02:08:17,707 WARN L156 FloydHoareUtils]: Requires clause for timeShift contained old-variable. Original clause: (let ((.cse7 (= |old(~pumpRunning~0)| 1)) (.cse1 (= 1 ~systemActive~0)) (.cse3 (= 0 ~systemActive~0))) (let ((.cse0 (= |old(~waterLevel~0)| 1)) (.cse9 (not .cse3)) (.cse2 (= |old(~pumpRunning~0)| 0)) (.cse13 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse11 (not .cse1)) (.cse8 (= 0 ~__SELECTED_FEATURE_highWaterSensor~0)) (.cse10 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse14 (not .cse7)) (.cse12 (<= 1 ~switchedOnBeforeTS~0))) (and (let ((.cse4 (= |old(~waterLevel~0)| 2)) (.cse5 (not .cse8)) (.cse6 (<= |old(~waterLevel~0)| 1))) (or (and .cse0 .cse1 .cse2) (and .cse2 .cse3 .cse4) (and .cse2 .cse5 .cse3 .cse6) (and .cse1 .cse7 .cse5 .cse4) (and .cse0 .cse2 .cse3) (and .cse1 .cse2 .cse4) (and .cse1 .cse7 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse5 .cse6) (and .cse1 .cse2 .cse5 .cse6))) (or (not (= ~switchedOnBeforeTS~0 0)) .cse8 .cse9 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse10 .cse11 .cse8 (= ~__SELECTED_FEATURE_methaneAlarm~0 0) .cse12) (or (not .cse0) .cse10 .cse8 .cse12 .cse9) (or (not .cse2) (and (= ~pumpRunning~0 0) .cse13)) (or .cse14 (and .cse13 (= ~pumpRunning~0 1))) (or .cse10 .cse11 .cse8 .cse12 (= ~__SELECTED_FEATURE_lowWaterSensor~0 0)) (= ~__SELECTED_FEATURE_base~0 1) (or .cse10 .cse14 .cse12)))) Eliminated clause: (and (exists ((|old(~pumpRunning~0)| Int) (|old(~switchedOnBeforeTS~0)| Int) (|old(~waterLevel~0)| Int)) (let ((.cse1 (= 1 ~systemActive~0)) (.cse7 (= |old(~pumpRunning~0)| 1)) (.cse3 (= 0 ~systemActive~0))) (let ((.cse0 (= |old(~waterLevel~0)| 1)) (.cse9 (not .cse3)) (.cse2 (= |old(~pumpRunning~0)| 0)) (.cse12 (not .cse7)) (.cse14 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse10 (< |old(~switchedOnBeforeTS~0)| 1)) (.cse13 (not .cse1)) (.cse11 (< 0 ~switchedOnBeforeTS~0)) (.cse8 (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (and (let ((.cse4 (= |old(~waterLevel~0)| 2)) (.cse5 (not .cse8)) (.cse6 (<= |old(~waterLevel~0)| 1))) (or (and .cse0 .cse1 .cse2) (and .cse2 .cse3 .cse4) (and .cse2 .cse5 .cse3 .cse6) (and .cse1 .cse7 .cse5 .cse4) (and .cse0 .cse2 .cse3) (and .cse1 .cse2 .cse4) (and .cse1 .cse7 (<= 1 |old(~switchedOnBeforeTS~0)|) .cse5 .cse6) (and .cse1 .cse2 .cse5 .cse6))) (or (not (= ~switchedOnBeforeTS~0 0)) .cse8 .cse9 (= |old(~switchedOnBeforeTS~0)| 0)) (or (not .cse0) .cse10 .cse11 .cse8 .cse9) (or .cse10 .cse11 .cse12) (or .cse10 .cse13 .cse11 .cse8 (= ~__SELECTED_FEATURE_lowWaterSensor~0 0)) (or (not .cse2) (and (= ~pumpRunning~0 0) .cse14)) (or .cse12 (and .cse14 (= ~pumpRunning~0 1))) (or .cse10 .cse13 .cse11 .cse8 (= ~__SELECTED_FEATURE_methaneAlarm~0 0)))))) (= ~__SELECTED_FEATURE_base~0 1)) [2024-11-22 02:08:17,722 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-22 02:08:17,749 WARN L156 FloydHoareUtils]: Requires clause for waterRise contained old-variable. Original clause: (and (let ((.cse8 (= ~pumpRunning~0 1)) (.cse2 (= 1 ~systemActive~0)) (.cse5 (= |old(~waterLevel~0)| 2)) (.cse1 (= |old(~waterLevel~0)| 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse6 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse4 (= 0 ~systemActive~0)) (.cse7 (<= |old(~waterLevel~0)| 1)) (.cse3 (= ~__SELECTED_FEATURE_base~0 1))) (or (and .cse0 .cse1 .cse2 .cse3) (and .cse0 .cse4 .cse3 .cse5) (and .cse0 .cse2 .cse6 .cse7 .cse3) (and .cse2 .cse6 .cse3 .cse5 .cse8) (and .cse2 .cse6 .cse7 (<= 1 ~switchedOnBeforeTS~0) .cse3 .cse8) (and .cse0 .cse2 .cse3 .cse5) (and .cse0 .cse1 .cse4 .cse3) (and .cse0 .cse6 .cse4 .cse7 .cse3))) (= |old(~waterLevel~0)| ~waterLevel~0)) Eliminated clause: (let ((.cse3 (= 0 ~systemActive~0)) (.cse8 (= ~waterLevel~0 1)) (.cse7 (= 2 ~waterLevel~0)) (.cse6 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (<= ~waterLevel~0 1)) (.cse5 (= 1 ~systemActive~0)) (.cse2 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse4 (= ~__SELECTED_FEATURE_base~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4) (and .cse1 .cse5 .cse2 (<= 1 ~switchedOnBeforeTS~0) .cse4 .cse6) (and .cse0 .cse7 .cse3 .cse4) (and .cse0 .cse3 .cse8 .cse4) (and .cse0 .cse5 .cse8 .cse4) (and .cse0 .cse7 .cse5 .cse4) (and .cse7 .cse5 .cse2 .cse4 .cse6) (and .cse0 .cse1 .cse5 .cse2 .cse4))) [2024-11-22 02:08:17,769 WARN L156 FloydHoareUtils]: Requires clause for processEnvironment__before__methaneAlarm contained old-variable. Original clause: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (<= ~waterLevel~0 1)) (.cse4 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse2 (= 1 ~systemActive~0)) (.cse5 (= ~__SELECTED_FEATURE_base~0 1))) (or (and .cse1 .cse2 .cse3 .cse4 (<= 1 ~switchedOnBeforeTS~0) .cse5) (and .cse1 .cse2 .cse0 .cse4 .cse5) (and .cse2 .cse0 (= ~waterLevel~0 1) .cse5) (and (= 2 ~waterLevel~0) .cse2 .cse0 .cse5))) (or (not .cse3) (= ~pumpRunning~0 1)))) Eliminated clause: (exists ((|old(~pumpRunning~0)| Int)) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse3 (= |old(~pumpRunning~0)| 1))) (and (or (not .cse0) (= ~pumpRunning~0 0)) (let ((.cse1 (<= ~waterLevel~0 1)) (.cse4 (not (= 0 ~__SELECTED_FEATURE_highWaterSensor~0))) (.cse2 (= 1 ~systemActive~0)) (.cse5 (= ~__SELECTED_FEATURE_base~0 1))) (or (and .cse1 .cse2 .cse3 .cse4 (<= 1 ~switchedOnBeforeTS~0) .cse5) (and .cse1 .cse2 .cse0 .cse4 .cse5) (and .cse2 .cse0 (= ~waterLevel~0 1) .cse5) (and (= 2 ~waterLevel~0) .cse2 .cse0 .cse5))) (or (not .cse3) (= ~pumpRunning~0 1))))) [2024-11-22 02:08:17,774 WARN L976 BoogieBacktranslator]: Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression [2024-11-22 02:08:17,778 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 22.11 02:08:17 BoogieIcfgContainer [2024-11-22 02:08:17,778 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-22 02:08:17,779 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-22 02:08:17,779 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-22 02:08:17,779 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-22 02:08:17,780 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 22.11 02:07:12" (3/4) ... [2024-11-22 02:08:17,782 INFO L142 WitnessPrinter]: Generating witness for correct program [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure activatePump__before__methaneQuery [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__before__lowWaterSensor [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure select_one [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2024-11-22 02:08:17,786 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__before__highWaterSensor [2024-11-22 02:08:17,787 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2024-11-22 02:08:17,787 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__before__methaneAlarm [2024-11-22 02:08:17,787 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2024-11-22 02:08:17,803 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 22 nodes and edges [2024-11-22 02:08:17,803 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 7 nodes and edges [2024-11-22 02:08:17,804 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2024-11-22 02:08:17,804 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-22 02:08:17,809 INFO L925 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2024-11-22 02:08:17,941 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.graphml [2024-11-22 02:08:17,942 INFO L149 WitnessManager]: Wrote witness to /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/witness.yml [2024-11-22 02:08:17,942 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-22 02:08:17,942 INFO L158 Benchmark]: Toolchain (without parser) took 66280.83ms. Allocated memory was 142.6MB in the beginning and 2.1GB in the end (delta: 1.9GB). Free memory was 85.9MB in the beginning and 1.3GB in the end (delta: -1.2GB). Peak memory consumption was 679.7MB. Max. memory is 16.1GB. [2024-11-22 02:08:17,943 INFO L158 Benchmark]: CDTParser took 0.22ms. Allocated memory is still 142.6MB. Free memory was 102.8MB in the beginning and 102.6MB in the end (delta: 151.0kB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-22 02:08:17,944 INFO L158 Benchmark]: CACSL2BoogieTranslator took 528.78ms. Allocated memory is still 142.6MB. Free memory was 85.9MB in the beginning and 62.8MB in the end (delta: 23.1MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. [2024-11-22 02:08:17,945 INFO L158 Benchmark]: Boogie Procedure Inliner took 67.69ms. Allocated memory is still 142.6MB. Free memory was 62.8MB in the beginning and 113.2MB in the end (delta: -50.4MB). Peak memory consumption was 7.8MB. Max. memory is 16.1GB. [2024-11-22 02:08:17,945 INFO L158 Benchmark]: Boogie Preprocessor took 67.77ms. Allocated memory was 142.6MB in the beginning and 188.7MB in the end (delta: 46.1MB). Free memory was 113.2MB in the beginning and 159.6MB in the end (delta: -46.4MB). Peak memory consumption was 2.8MB. Max. memory is 16.1GB. [2024-11-22 02:08:17,945 INFO L158 Benchmark]: RCFGBuilder took 614.25ms. Allocated memory is still 188.7MB. Free memory was 159.6MB in the beginning and 135.5MB in the end (delta: 24.1MB). Peak memory consumption was 25.2MB. Max. memory is 16.1GB. [2024-11-22 02:08:17,946 INFO L158 Benchmark]: TraceAbstraction took 64832.58ms. Allocated memory was 188.7MB in the beginning and 2.1GB in the end (delta: 1.9GB). Free memory was 134.5MB in the beginning and 1.3GB in the end (delta: -1.2GB). Peak memory consumption was 1.3GB. Max. memory is 16.1GB. [2024-11-22 02:08:17,947 INFO L158 Benchmark]: Witness Printer took 162.93ms. Allocated memory is still 2.1GB. Free memory was 1.3GB in the beginning and 1.3GB in the end (delta: 11.5MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. [2024-11-22 02:08:17,950 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.22ms. Allocated memory is still 142.6MB. Free memory was 102.8MB in the beginning and 102.6MB in the end (delta: 151.0kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 528.78ms. Allocated memory is still 142.6MB. Free memory was 85.9MB in the beginning and 62.8MB in the end (delta: 23.1MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 67.69ms. Allocated memory is still 142.6MB. Free memory was 62.8MB in the beginning and 113.2MB in the end (delta: -50.4MB). Peak memory consumption was 7.8MB. Max. memory is 16.1GB. * Boogie Preprocessor took 67.77ms. Allocated memory was 142.6MB in the beginning and 188.7MB in the end (delta: 46.1MB). Free memory was 113.2MB in the beginning and 159.6MB in the end (delta: -46.4MB). Peak memory consumption was 2.8MB. Max. memory is 16.1GB. * RCFGBuilder took 614.25ms. Allocated memory is still 188.7MB. Free memory was 159.6MB in the beginning and 135.5MB in the end (delta: 24.1MB). Peak memory consumption was 25.2MB. Max. memory is 16.1GB. * TraceAbstraction took 64832.58ms. Allocated memory was 188.7MB in the beginning and 2.1GB in the end (delta: 1.9GB). Free memory was 134.5MB in the beginning and 1.3GB in the end (delta: -1.2GB). Peak memory consumption was 1.3GB. Max. memory is 16.1GB. * Witness Printer took 162.93ms. Allocated memory is still 2.1GB. Free memory was 1.3GB in the beginning and 1.3GB in the end (delta: 11.5MB). Peak memory consumption was 12.6MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [49] - GenericResultAtLocation [Line: 168]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [168] - GenericResultAtLocation [Line: 272]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [272] - GenericResultAtLocation [Line: 317]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [317] - GenericResultAtLocation [Line: 326]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [326] - GenericResultAtLocation [Line: 692]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [692] - GenericResultAtLocation [Line: 771]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [771] - GenericResultAtLocation [Line: 1110]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [1110] - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression - GenericResult: Unfinished Backtranslation Unfinished Backtranslation: Expression type not yet supported in backtranslation: QuantifierExpression * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 322]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 13 procedures, 148 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 17.7s, OverallIterations: 16, TraceHistogramMax: 6, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.1s, AutomataDifference: 6.8s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2877 SdHoareTripleChecker+Valid, 2.8s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2850 mSDsluCounter, 11169 SdHoareTripleChecker+Invalid, 2.2s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 7596 mSDsCounter, 696 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3586 IncrementalHoareTripleChecker+Invalid, 4282 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 696 mSolverCounterUnsat, 3573 mSDtfsCounter, 3586 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 2230 GetRequests, 2109 SyntacticMatches, 7 SemanticMatches, 114 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 461 ImplicationChecksByTransitivity, 0.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=8573occurred in iteration=13, InterpolantAutomatonStates: 102, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 3.0s AutomataMinimizationTime, 16 MinimizatonAttempts, 787 StatesRemovedByMinimization, 11 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.3s SsaConstructionTime, 0.9s SatisfiabilityAnalysisTime, 3.9s InterpolantComputationTime, 4057 NumberOfCodeBlocks, 4057 NumberOfCodeBlocksAsserted, 24 NumberOfCheckSat, 4411 ConstructedInterpolants, 0 QuantifiedInterpolants, 7688 SizeOfPredicates, 2 NumberOfNonLiveVariables, 4989 ConjunctsInSsa, 39 ConjunctsInUnsatCore, 26 InterpolantComputations, 14 PerfectInterpolantSequences, 4092/4290 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 704]: Location Invariant Derived location invariant: 0 - InvariantResult [Line: 705]: Loop Invariant Derived loop invariant: (((((((((((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1)) || (((((pumpRunning == 0) && (splverifierCounter == 0)) && (0 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || (((((pumpRunning == 0) && (2 == waterLevel)) && (splverifierCounter == 0)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || ((((((pumpRunning == 0) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || ((((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (splverifierCounter == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) || (((((((waterLevel <= 1) && (1 == systemActive)) && (splverifierCounter == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (1 == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || (((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (splverifierCounter == 0)) && (__SELECTED_FEATURE_base == 1))) - InvariantResult [Line: 181]: Loop Invariant Derived loop invariant: 0 - ProcedureContractResult [Line: 985]: Procedure Contract for deactivatePump Derived contract for procedure deactivatePump. Requires: ((((((((((switchedOnBeforeTS != 0) && (__SELECTED_FEATURE_methaneAlarm == 0)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_lowWaterSensor == 0)) && (__SELECTED_FEATURE_base == 1)) && (0 != systemActive)) || ((((2 == waterLevel) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (0 != systemActive))) || (((((1 == systemActive) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1))) && (pumpRunning == 1)) Ensures: (((pumpRunning == 0) && ((((((((1 == systemActive) && (\old(pumpRunning) == 1)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) || (((((2 == waterLevel) && (\old(pumpRunning) == 1)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (0 != systemActive))) || ((((((((switchedOnBeforeTS != 0) && (\old(pumpRunning) == 1)) && (__SELECTED_FEATURE_methaneAlarm == 0)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_lowWaterSensor == 0)) && (__SELECTED_FEATURE_base == 1)) && (0 != systemActive)))) && ((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 943]: Procedure Contract for activatePump__before__methaneQuery Derived contract for procedure activatePump__before__methaneQuery. Requires: (((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) Ensures: (((((((2 == waterLevel) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1)) && ((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 1004]: Procedure Contract for isPumpRunning Derived contract for procedure isPumpRunning. Requires: (((((((((((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1)) || (((((pumpRunning == 0) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((2 == waterLevel) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) || ((((((1 == systemActive) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) Ensures: (((((((((((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor))) || (((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive))) || (((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1))) || ((((pumpRunning == 0) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive))) || (((((2 == waterLevel) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || (((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive))) || ((((((1 == systemActive) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) && ((pumpRunning != 0) || ((\result == 0) && (__SELECTED_FEATURE_base == 1)))) && ((\result == 1) || (pumpRunning != 1))) && (((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 840]: Procedure Contract for processEnvironment__before__lowWaterSensor Derived contract for procedure processEnvironment__before__lowWaterSensor. Ensures: ((((((pumpRunning == 0) || ((0 != __SELECTED_FEATURE_highWaterSensor) && (pumpRunning == 1))) && ((\old(pumpRunning) != 1) || (pumpRunning == 1))) && ((((((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) || ((((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || (((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 1)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1))) || ((((2 == waterLevel) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (__SELECTED_FEATURE_base == 1)))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (1 < waterLevel))) && ((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 274]: Procedure Contract for select_one Derived contract for procedure select_one. Requires: ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1)) Ensures: (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1)) && (((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 92]: Procedure Contract for changeMethaneLevel Derived contract for procedure changeMethaneLevel. Requires: (((((((((((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1)) || (((((pumpRunning == 0) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((2 == waterLevel) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) || ((((((1 == systemActive) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) Ensures: ((((((((((((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1)) || (((((pumpRunning == 0) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((2 == waterLevel) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) || ((((((1 == systemActive) && (waterLevel <= 2)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) && ((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 780]: Procedure Contract for timeShift Derived contract for procedure timeShift. Requires: (__SELECTED_FEATURE_base == 1) Ensures: ((((((((((__SELECTED_FEATURE_lowWaterSensor != 0) || (\old(pumpRunning) != 1)) || (__SELECTED_FEATURE_methaneAlarm != 0)) || (pumpRunning == 1)) && (((1 < \old(waterLevel)) || (\old(waterLevel) == 1)) || (0 != __SELECTED_FEATURE_highWaterSensor))) && (((1 < \old(waterLevel)) || (\old(pumpRunning) != 0)) || ((pumpRunning == 0) && (\old(waterLevel) == waterLevel)))) && (((((((((1 == systemActive) && (\old(pumpRunning) == 0)) && (__SELECTED_FEATURE_base == 1)) && (\old(waterLevel) == 2)) || ((((1 == systemActive) && (\old(pumpRunning) == 0)) && (\old(waterLevel) <= 1)) && (__SELECTED_FEATURE_base == 1))) || (((((1 == systemActive) && (\old(pumpRunning) == 1)) && (1 <= \old(switchedOnBeforeTS))) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) || ((((\old(pumpRunning) == 0) && (0 == systemActive)) && (\old(waterLevel) <= 1)) && (__SELECTED_FEATURE_base == 1))) || (((((1 == systemActive) && (\old(pumpRunning) == 1)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (\old(waterLevel) == 2))) || ((((\old(pumpRunning) == 0) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1)) && (\old(waterLevel) == 2)))) && ((((((((pumpRunning == 0) && (\old(waterLevel) == ((long long) waterLevel + 1))) && (waterLevel <= 1)) && (1 <= switchedOnBeforeTS)) || (((((\old(waterLevel) != 1) && (waterLevel <= 1)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || ((((\old(waterLevel) == ((long long) waterLevel + 1)) && (waterLevel <= 1)) && (1 <= switchedOnBeforeTS)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (\old(waterLevel) != 1)) && (waterLevel <= 1)) && (\old(waterLevel) == waterLevel)) && (1 <= switchedOnBeforeTS))) || (\old(pumpRunning) != 1))) && (((((((2 == waterLevel) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (pumpRunning == 1)) || (\old(pumpRunning) != 0)) || ((pumpRunning == 0) && (2 == waterLevel))) || (\old(waterLevel) != 2))) && ((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 171]: Procedure Contract for cleanup Derived contract for procedure cleanup. Requires: 0 Ensures: (0 && ((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (systemActive == \old(systemActive)))) - ProcedureContractResult [Line: 807]: Procedure Contract for processEnvironment__before__highWaterSensor Derived contract for procedure processEnvironment__before__highWaterSensor. Requires: (((((((((waterLevel <= 1) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) Ensures: ((((((((((waterLevel <= 1) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) && (((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 80]: Procedure Contract for waterRise Derived contract for procedure waterRise. Requires: ((((((((((((pumpRunning == 0) && (waterLevel <= 1)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1)) || ((((((waterLevel <= 1) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (0 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (1 == systemActive)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((2 == waterLevel) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || (((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) Ensures: (((((((((((((((pumpRunning == 0) && (\old(waterLevel) == 1)) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1)) || ((((pumpRunning == 0) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1)) && (\old(waterLevel) == 2))) || (((((pumpRunning == 0) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (\old(waterLevel) <= 1)) && (__SELECTED_FEATURE_base == 1))) || (((((1 == systemActive) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1)) && (\old(waterLevel) == 2)) && (pumpRunning == 1))) || ((((((1 == systemActive) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (\old(waterLevel) <= 1)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (pumpRunning == 1))) || ((((pumpRunning == 0) && (1 == systemActive)) && (__SELECTED_FEATURE_base == 1)) && (\old(waterLevel) == 2))) || ((((pumpRunning == 0) && (\old(waterLevel) == 1)) && (0 == systemActive)) && (__SELECTED_FEATURE_base == 1))) || (((((pumpRunning == 0) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (0 == systemActive)) && (\old(waterLevel) <= 1)) && (__SELECTED_FEATURE_base == 1))) && ((2 == waterLevel) || (\old(waterLevel) != 2))) && ((2 == waterLevel) || (\old(waterLevel) != 1))) && (waterLevel <= ((long long) \old(waterLevel) + 1))) && ((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 883]: Procedure Contract for processEnvironment__before__methaneAlarm Derived contract for procedure processEnvironment__before__methaneAlarm. Ensures: ((((((((__SELECTED_FEATURE_lowWaterSensor != 0) || (\old(pumpRunning) != 1)) || (pumpRunning == 1)) && ((pumpRunning == 0) || (0 != __SELECTED_FEATURE_highWaterSensor))) && (((((((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 1)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) || (((((waterLevel <= 1) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) || ((((1 == systemActive) && (\old(pumpRunning) == 0)) && (waterLevel == 1)) && (__SELECTED_FEATURE_base == 1))) || ((((2 == waterLevel) && (1 == systemActive)) && (\old(pumpRunning) == 0)) && (__SELECTED_FEATURE_base == 1)))) && (((\old(pumpRunning) != 0) || (pumpRunning == 0)) || (1 < waterLevel))) && ((pumpRunning == 0) || (pumpRunning == 1))) && ((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) - ProcedureContractResult [Line: 993]: Procedure Contract for isMethaneAlarm Derived contract for procedure isMethaneAlarm. Requires: ((((((((waterLevel <= 1) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (__SELECTED_FEATURE_methaneAlarm != 0)) && (pumpRunning == 1)) || (((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) Ensures: (((((((((waterLevel <= 1) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (1 <= switchedOnBeforeTS)) && (__SELECTED_FEATURE_base == 1)) && (__SELECTED_FEATURE_methaneAlarm != 0)) && (pumpRunning == 1)) || (((((pumpRunning == 0) && (2 == waterLevel)) && (1 == systemActive)) && (0 != __SELECTED_FEATURE_highWaterSensor)) && (__SELECTED_FEATURE_base == 1))) && (((((((((((((((__SELECTED_FEATURE_base == \old(__SELECTED_FEATURE_base)) && (__SELECTED_FEATURE_highWaterSensor == \old(__SELECTED_FEATURE_highWaterSensor))) && (__SELECTED_FEATURE_lowWaterSensor == \old(__SELECTED_FEATURE_lowWaterSensor))) && (__SELECTED_FEATURE_methaneQuery == \old(__SELECTED_FEATURE_methaneQuery))) && (__SELECTED_FEATURE_methaneAlarm == \old(__SELECTED_FEATURE_methaneAlarm))) && (__SELECTED_FEATURE_stopCommand == \old(__SELECTED_FEATURE_stopCommand))) && (__SELECTED_FEATURE_startCommand == \old(__SELECTED_FEATURE_startCommand))) && (__GUIDSL_ROOT_PRODUCTION == \old(__GUIDSL_ROOT_PRODUCTION))) && (waterLevel == \old(waterLevel))) && (methaneLevelCritical == \old(methaneLevelCritical))) && (cleanupTimeShifts == \old(cleanupTimeShifts))) && (head == \old(head))) && (pumpRunning == \old(pumpRunning))) && (systemActive == \old(systemActive))) && (switchedOnBeforeTS == \old(switchedOnBeforeTS)))) RESULT: Ultimate proved your program to be correct! [2024-11-22 02:08:17,980 INFO L540 MonitoredProcess]: [MP /storage/repos/ultimate/releaseScripts/default/UAutomizer-linux/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE