./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec3_product21.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version d790fecc Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/config/AutomizerReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec3_product21.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/config/svcomp-Reach-32bit-Automizer_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Automizer --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash cb1c81112da7426f28a4c2690555e17bdc3cfadcaf288b3cb23a3bbf0c5e9fe6 --- Real Ultimate output --- This is Ultimate 0.3.0-dev-d790fec [2024-11-28 02:16:55,233 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-28 02:16:55,352 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/config/svcomp-Reach-32bit-Automizer_Default.epf [2024-11-28 02:16:55,359 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-28 02:16:55,360 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-28 02:16:55,401 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-28 02:16:55,403 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-28 02:16:55,403 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-28 02:16:55,404 INFO L151 SettingsManager]: Preferences of Boogie Preprocessor differ from their defaults: [2024-11-28 02:16:55,404 INFO L153 SettingsManager]: * Use memory slicer=true [2024-11-28 02:16:55,405 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-28 02:16:55,405 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-28 02:16:55,406 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-28 02:16:55,406 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-28 02:16:55,406 INFO L153 SettingsManager]: * Use SBE=true [2024-11-28 02:16:55,407 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-28 02:16:55,407 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2024-11-28 02:16:55,407 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-28 02:16:55,407 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-28 02:16:55,408 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-28 02:16:55,409 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-28 02:16:55,409 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2024-11-28 02:16:55,409 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-28 02:16:55,409 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2024-11-28 02:16:55,409 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-28 02:16:55,409 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2024-11-28 02:16:55,410 INFO L153 SettingsManager]: * Behaviour of calls to undefined functions=OVERAPPROXIMATE_BEHAVIOUR [2024-11-28 02:16:55,410 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-28 02:16:55,410 INFO L151 SettingsManager]: Preferences of IcfgBuilder differ from their defaults: [2024-11-28 02:16:55,410 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-28 02:16:55,410 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-28 02:16:55,410 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-28 02:16:55,410 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-28 02:16:55,411 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-28 02:16:55,411 INFO L153 SettingsManager]: * Size of a code block=SequenceOfStatements [2024-11-28 02:16:55,411 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-28 02:16:55,411 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-28 02:16:55,412 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-28 02:16:55,412 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Compute procedure contracts=false [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Trace refinement strategy=CAMEL [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Automaton type used in concurrency analysis=PETRI_NET [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Order on configurations for Petri net unfoldings=DBO [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-28 02:16:55,413 INFO L153 SettingsManager]: * Looper check in Petri net analysis=SEMANTIC Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Automizer Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> cb1c81112da7426f28a4c2690555e17bdc3cfadcaf288b3cb23a3bbf0c5e9fe6 [2024-11-28 02:16:55,735 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-28 02:16:55,745 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-28 02:16:55,747 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-28 02:16:55,749 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-28 02:16:55,749 INFO L274 PluginConnector]: CDTParser initialized [2024-11-28 02:16:55,751 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/../../sv-benchmarks/c/product-lines/minepump_spec3_product21.cil.c [2024-11-28 02:16:58,943 INFO L533 CDTParser]: Created temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/data/1323ac27d/59c712a4f4734ba0a72f479fdf992585/FLAGe67183e18 [2024-11-28 02:16:59,238 INFO L384 CDTParser]: Found 1 translation units. [2024-11-28 02:16:59,239 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/sv-benchmarks/c/product-lines/minepump_spec3_product21.cil.c [2024-11-28 02:16:59,263 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/data/1323ac27d/59c712a4f4734ba0a72f479fdf992585/FLAGe67183e18 [2024-11-28 02:16:59,293 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/data/1323ac27d/59c712a4f4734ba0a72f479fdf992585 [2024-11-28 02:16:59,296 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-28 02:16:59,300 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-28 02:16:59,304 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-28 02:16:59,304 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-28 02:16:59,310 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-28 02:16:59,311 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:16:59,314 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@731d747f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59, skipping insertion in model container [2024-11-28 02:16:59,315 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:16:59,373 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-28 02:16:59,754 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/sv-benchmarks/c/product-lines/minepump_spec3_product21.cil.c[13817,13830] [2024-11-28 02:16:59,800 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-28 02:16:59,818 INFO L200 MainTranslator]: Completed pre-run [2024-11-28 02:16:59,829 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] [2024-11-28 02:16:59,831 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [415] [2024-11-28 02:16:59,831 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [603] [2024-11-28 02:16:59,831 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [612] [2024-11-28 02:16:59,831 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [680] [2024-11-28 02:16:59,833 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [770] [2024-11-28 02:16:59,833 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [869] [2024-11-28 02:16:59,834 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [903] [2024-11-28 02:16:59,905 WARN L250 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/sv-benchmarks/c/product-lines/minepump_spec3_product21.cil.c[13817,13830] [2024-11-28 02:16:59,930 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-28 02:16:59,950 INFO L204 MainTranslator]: Completed translation [2024-11-28 02:16:59,951 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59 WrapperNode [2024-11-28 02:16:59,951 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-28 02:16:59,952 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-28 02:16:59,952 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-28 02:16:59,952 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-28 02:16:59,960 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:16:59,977 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,010 INFO L138 Inliner]: procedures = 53, calls = 98, calls flagged for inlining = 20, calls inlined = 17, statements flattened = 189 [2024-11-28 02:17:00,010 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-28 02:17:00,011 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-28 02:17:00,011 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-28 02:17:00,011 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-28 02:17:00,020 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,021 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,023 INFO L184 PluginConnector]: Executing the observer MemorySlicer from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,039 INFO L175 MemorySlicer]: Split 2 memory accesses to 1 slices as follows [2]. 100 percent of accesses are in the largest equivalence class. The 2 initializations are split as follows [2]. The 0 writes are split as follows [0]. [2024-11-28 02:17:00,042 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,042 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,047 INFO L184 PluginConnector]: Executing the observer ReplaceArrayAssignments from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,048 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,053 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,055 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,056 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,059 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-28 02:17:00,060 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-28 02:17:00,060 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-28 02:17:00,060 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-28 02:17:00,061 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (1/1) ... [2024-11-28 02:17:00,069 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 [2024-11-28 02:17:00,085 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/z3 [2024-11-28 02:17:00,101 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (exit command is (exit), workingDir is null) [2024-11-28 02:17:00,108 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Waiting until timeout for monitored process [2024-11-28 02:17:00,140 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-28 02:17:00,142 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2024-11-28 02:17:00,142 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2024-11-28 02:17:00,142 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2024-11-28 02:17:00,143 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2024-11-28 02:17:00,143 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneLevelCritical [2024-11-28 02:17:00,143 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneLevelCritical [2024-11-28 02:17:00,144 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2024-11-28 02:17:00,144 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2024-11-28 02:17:00,144 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2024-11-28 02:17:00,145 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2024-11-28 02:17:00,145 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2024-11-28 02:17:00,145 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2024-11-28 02:17:00,146 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2024-11-28 02:17:00,146 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2024-11-28 02:17:00,146 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int#0 [2024-11-28 02:17:00,146 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2024-11-28 02:17:00,146 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2024-11-28 02:17:00,150 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-28 02:17:00,151 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-28 02:17:00,253 INFO L234 CfgBuilder]: Building ICFG [2024-11-28 02:17:00,256 INFO L260 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-28 02:17:00,570 INFO L? ?]: Removed 43 outVars from TransFormulas that were not future-live. [2024-11-28 02:17:00,570 INFO L283 CfgBuilder]: Performing block encoding [2024-11-28 02:17:00,582 INFO L307 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-28 02:17:00,582 INFO L312 CfgBuilder]: Removed 4 assume(true) statements. [2024-11-28 02:17:00,583 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 02:17:00 BoogieIcfgContainer [2024-11-28 02:17:00,583 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-28 02:17:00,585 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-28 02:17:00,586 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-28 02:17:00,591 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-28 02:17:00,592 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 28.11 02:16:59" (1/3) ... [2024-11-28 02:17:00,592 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4ef2a93a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 28.11 02:17:00, skipping insertion in model container [2024-11-28 02:17:00,593 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 28.11 02:16:59" (2/3) ... [2024-11-28 02:17:00,593 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@4ef2a93a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 28.11 02:17:00, skipping insertion in model container [2024-11-28 02:17:00,593 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 02:17:00" (3/3) ... [2024-11-28 02:17:00,594 INFO L128 eAbstractionObserver]: Analyzing ICFG minepump_spec3_product21.cil.c [2024-11-28 02:17:00,612 INFO L216 ceAbstractionStarter]: Automizer settings: Hoare:LoopHeads NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-28 02:17:00,614 INFO L151 ceAbstractionStarter]: Applying trace abstraction to ICFG minepump_spec3_product21.cil.c that has 9 procedures, 87 locations, 1 initial locations, 2 loop locations, and 1 error locations. [2024-11-28 02:17:00,684 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-28 02:17:00,700 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=PETRI_NET, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2c2c1d66, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-28 02:17:00,700 INFO L334 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2024-11-28 02:17:00,707 INFO L276 IsEmpty]: Start isEmpty. Operand has 87 states, 63 states have (on average 1.3968253968253967) internal successors, (88), 71 states have internal predecessors, (88), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 10 states have call predecessors, (14), 14 states have call successors, (14) [2024-11-28 02:17:00,716 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-28 02:17:00,716 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:17:00,718 INFO L218 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:17:00,718 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:17:00,727 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:17:00,728 INFO L85 PathProgramCache]: Analyzing trace with hash -773925906, now seen corresponding path program 1 times [2024-11-28 02:17:00,737 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:17:00,737 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1082285893] [2024-11-28 02:17:00,738 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:17:00,738 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:17:00,849 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:17:00,911 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-28 02:17:00,912 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:17:00,912 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1082285893] [2024-11-28 02:17:00,913 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1082285893] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:17:00,913 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:17:00,913 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-28 02:17:00,915 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [797981995] [2024-11-28 02:17:00,916 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:17:00,920 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-28 02:17:00,920 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:17:00,976 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-28 02:17:00,977 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-28 02:17:00,980 INFO L87 Difference]: Start difference. First operand has 87 states, 63 states have (on average 1.3968253968253967) internal successors, (88), 71 states have internal predecessors, (88), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 10 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-28 02:17:01,028 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:17:01,031 INFO L93 Difference]: Finished difference Result 166 states and 227 transitions. [2024-11-28 02:17:01,032 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-28 02:17:01,034 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25 [2024-11-28 02:17:01,034 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:17:01,048 INFO L225 Difference]: With dead ends: 166 [2024-11-28 02:17:01,049 INFO L226 Difference]: Without dead ends: 78 [2024-11-28 02:17:01,056 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-28 02:17:01,060 INFO L435 NwaCegarLoop]: 110 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 0 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 110 SdHoareTripleChecker+Invalid, 0 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 0 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:17:01,061 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 110 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 0 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:17:01,079 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 78 states. [2024-11-28 02:17:01,109 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 78 to 78. [2024-11-28 02:17:01,113 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 78 states, 56 states have (on average 1.3214285714285714) internal successors, (74), 63 states have internal predecessors, (74), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 9 states have call predecessors, (13), 13 states have call successors, (13) [2024-11-28 02:17:01,121 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 78 states to 78 states and 101 transitions. [2024-11-28 02:17:01,125 INFO L78 Accepts]: Start accepts. Automaton has 78 states and 101 transitions. Word has length 25 [2024-11-28 02:17:01,126 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:17:01,126 INFO L471 AbstractCegarLoop]: Abstraction has 78 states and 101 transitions. [2024-11-28 02:17:01,127 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 10.5) internal successors, (21), 2 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-28 02:17:01,128 INFO L276 IsEmpty]: Start isEmpty. Operand 78 states and 101 transitions. [2024-11-28 02:17:01,130 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2024-11-28 02:17:01,131 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:17:01,132 INFO L218 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:17:01,132 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-28 02:17:01,133 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:17:01,134 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:17:01,135 INFO L85 PathProgramCache]: Analyzing trace with hash 1833574568, now seen corresponding path program 1 times [2024-11-28 02:17:01,135 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:17:01,135 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1866639314] [2024-11-28 02:17:01,135 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:17:01,135 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:17:01,187 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:17:01,352 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-28 02:17:01,355 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:17:01,355 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1866639314] [2024-11-28 02:17:01,355 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1866639314] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:17:01,355 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:17:01,356 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:17:01,356 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1978446716] [2024-11-28 02:17:01,356 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:17:01,357 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:17:01,357 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:17:01,359 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:17:01,360 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:17:01,361 INFO L87 Difference]: Start difference. First operand 78 states and 101 transitions. Second operand has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-28 02:17:01,401 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:17:01,405 INFO L93 Difference]: Finished difference Result 124 states and 160 transitions. [2024-11-28 02:17:01,407 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:17:01,407 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 25 [2024-11-28 02:17:01,407 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:17:01,408 INFO L225 Difference]: With dead ends: 124 [2024-11-28 02:17:01,409 INFO L226 Difference]: Without dead ends: 70 [2024-11-28 02:17:01,409 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:17:01,413 INFO L435 NwaCegarLoop]: 89 mSDtfsCounter, 12 mSDsluCounter, 74 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 163 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:17:01,415 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 163 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:17:01,416 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-11-28 02:17:01,433 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2024-11-28 02:17:01,433 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 51 states have (on average 1.3333333333333333) internal successors, (68), 58 states have internal predecessors, (68), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 7 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-28 02:17:01,435 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2024-11-28 02:17:01,436 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 25 [2024-11-28 02:17:01,436 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:17:01,436 INFO L471 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2024-11-28 02:17:01,436 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 7.0) internal successors, (21), 3 states have internal predecessors, (21), 1 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-28 02:17:01,436 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2024-11-28 02:17:01,437 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 30 [2024-11-28 02:17:01,438 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:17:01,438 INFO L218 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:17:01,438 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-28 02:17:01,438 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:17:01,439 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:17:01,439 INFO L85 PathProgramCache]: Analyzing trace with hash -61340405, now seen corresponding path program 1 times [2024-11-28 02:17:01,439 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:17:01,439 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1501321754] [2024-11-28 02:17:01,439 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:17:01,440 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:17:01,477 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:17:01,610 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-28 02:17:01,611 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:17:01,611 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1501321754] [2024-11-28 02:17:01,611 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1501321754] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:17:01,611 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:17:01,611 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:17:01,611 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1562094600] [2024-11-28 02:17:01,611 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:17:01,612 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:17:01,612 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:17:01,612 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:17:01,612 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:17:01,612 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 3 states, 3 states have (on average 8.666666666666666) internal successors, (26), 3 states have internal predecessors, (26), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-28 02:17:01,649 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:17:01,649 INFO L93 Difference]: Finished difference Result 133 states and 174 transitions. [2024-11-28 02:17:01,650 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:17:01,650 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.666666666666666) internal successors, (26), 3 states have internal predecessors, (26), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 29 [2024-11-28 02:17:01,651 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:17:01,652 INFO L225 Difference]: With dead ends: 133 [2024-11-28 02:17:01,652 INFO L226 Difference]: Without dead ends: 70 [2024-11-28 02:17:01,652 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:17:01,653 INFO L435 NwaCegarLoop]: 88 mSDtfsCounter, 73 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 1 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 73 SdHoareTripleChecker+Valid, 88 SdHoareTripleChecker+Invalid, 1 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 1 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:17:01,656 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [73 Valid, 88 Invalid, 1 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 1 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:17:01,657 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2024-11-28 02:17:01,670 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2024-11-28 02:17:01,671 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 51 states have (on average 1.3137254901960784) internal successors, (67), 58 states have internal predecessors, (67), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 7 states have call predecessors, (11), 11 states have call successors, (11) [2024-11-28 02:17:01,672 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 89 transitions. [2024-11-28 02:17:01,674 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 89 transitions. Word has length 29 [2024-11-28 02:17:01,674 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:17:01,674 INFO L471 AbstractCegarLoop]: Abstraction has 70 states and 89 transitions. [2024-11-28 02:17:01,674 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.666666666666666) internal successors, (26), 3 states have internal predecessors, (26), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2024-11-28 02:17:01,674 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 89 transitions. [2024-11-28 02:17:01,675 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2024-11-28 02:17:01,675 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:17:01,676 INFO L218 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:17:01,676 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2024-11-28 02:17:01,676 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:17:01,676 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:17:01,677 INFO L85 PathProgramCache]: Analyzing trace with hash -2003455453, now seen corresponding path program 1 times [2024-11-28 02:17:01,677 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:17:01,677 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1441893780] [2024-11-28 02:17:01,677 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:17:01,677 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:17:01,719 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:17:01,958 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-28 02:17:01,959 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:17:01,959 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1441893780] [2024-11-28 02:17:01,959 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1441893780] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:17:01,959 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:17:01,960 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-28 02:17:01,960 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1582850163] [2024-11-28 02:17:01,960 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:17:01,961 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-28 02:17:01,961 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:17:01,962 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-28 02:17:01,963 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=7, Invalid=13, Unknown=0, NotChecked=0, Total=20 [2024-11-28 02:17:01,963 INFO L87 Difference]: Start difference. First operand 70 states and 89 transitions. Second operand has 5 states, 5 states have (on average 6.4) internal successors, (32), 5 states have internal predecessors, (32), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-28 02:17:02,086 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:17:02,086 INFO L93 Difference]: Finished difference Result 189 states and 250 transitions. [2024-11-28 02:17:02,087 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-28 02:17:02,087 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 6.4) internal successors, (32), 5 states have internal predecessors, (32), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 39 [2024-11-28 02:17:02,087 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:17:02,090 INFO L225 Difference]: With dead ends: 189 [2024-11-28 02:17:02,090 INFO L226 Difference]: Without dead ends: 126 [2024-11-28 02:17:02,091 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=15, Invalid=27, Unknown=0, NotChecked=0, Total=42 [2024-11-28 02:17:02,092 INFO L435 NwaCegarLoop]: 83 mSDtfsCounter, 54 mSDsluCounter, 239 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 54 SdHoareTripleChecker+Valid, 322 SdHoareTripleChecker+Invalid, 29 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-28 02:17:02,092 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [54 Valid, 322 Invalid, 29 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-28 02:17:02,093 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 126 states. [2024-11-28 02:17:02,125 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 126 to 126. [2024-11-28 02:17:02,126 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 126 states, 90 states have (on average 1.3111111111111111) internal successors, (118), 102 states have internal predecessors, (118), 22 states have call successors, (22), 14 states have call predecessors, (22), 13 states have return successors, (23), 13 states have call predecessors, (23), 22 states have call successors, (23) [2024-11-28 02:17:02,128 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 126 states to 126 states and 163 transitions. [2024-11-28 02:17:02,128 INFO L78 Accepts]: Start accepts. Automaton has 126 states and 163 transitions. Word has length 39 [2024-11-28 02:17:02,131 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:17:02,131 INFO L471 AbstractCegarLoop]: Abstraction has 126 states and 163 transitions. [2024-11-28 02:17:02,131 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 6.4) internal successors, (32), 5 states have internal predecessors, (32), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-28 02:17:02,132 INFO L276 IsEmpty]: Start isEmpty. Operand 126 states and 163 transitions. [2024-11-28 02:17:02,134 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2024-11-28 02:17:02,134 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:17:02,138 INFO L218 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:17:02,138 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2024-11-28 02:17:02,138 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:17:02,139 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:17:02,139 INFO L85 PathProgramCache]: Analyzing trace with hash 1038114344, now seen corresponding path program 1 times [2024-11-28 02:17:02,139 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:17:02,139 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1386360696] [2024-11-28 02:17:02,139 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:17:02,139 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:17:02,164 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-28 02:17:02,320 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-28 02:17:02,320 INFO L136 FreeRefinementEngine]: Strategy CAMEL found an infeasible trace [2024-11-28 02:17:02,320 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1386360696] [2024-11-28 02:17:02,320 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1386360696] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-28 02:17:02,321 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-28 02:17:02,321 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-28 02:17:02,321 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1778834741] [2024-11-28 02:17:02,321 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-28 02:17:02,321 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-28 02:17:02,321 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy CAMEL [2024-11-28 02:17:02,322 INFO L144 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-28 02:17:02,322 INFO L146 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:17:02,322 INFO L87 Difference]: Start difference. First operand 126 states and 163 transitions. Second operand has 3 states, 3 states have (on average 11.333333333333334) internal successors, (34), 3 states have internal predecessors, (34), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-28 02:17:02,365 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-28 02:17:02,365 INFO L93 Difference]: Finished difference Result 210 states and 273 transitions. [2024-11-28 02:17:02,368 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-28 02:17:02,368 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 11.333333333333334) internal successors, (34), 3 states have internal predecessors, (34), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 41 [2024-11-28 02:17:02,368 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-28 02:17:02,370 INFO L225 Difference]: With dead ends: 210 [2024-11-28 02:17:02,370 INFO L226 Difference]: Without dead ends: 91 [2024-11-28 02:17:02,374 INFO L434 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-28 02:17:02,377 INFO L435 NwaCegarLoop]: 56 mSDtfsCounter, 45 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 4 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 45 SdHoareTripleChecker+Valid, 56 SdHoareTripleChecker+Invalid, 6 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 4 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2024-11-28 02:17:02,377 INFO L436 NwaCegarLoop]: SdHoareTripleChecker [45 Valid, 56 Invalid, 6 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 4 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2024-11-28 02:17:02,378 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 91 states. [2024-11-28 02:17:02,404 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 91 to 91. [2024-11-28 02:17:02,404 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 91 states, 67 states have (on average 1.2238805970149254) internal successors, (82), 71 states have internal predecessors, (82), 12 states have call successors, (12), 12 states have call predecessors, (12), 11 states have return successors, (12), 11 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-28 02:17:02,405 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 91 states to 91 states and 106 transitions. [2024-11-28 02:17:02,405 INFO L78 Accepts]: Start accepts. Automaton has 91 states and 106 transitions. Word has length 41 [2024-11-28 02:17:02,405 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-28 02:17:02,406 INFO L471 AbstractCegarLoop]: Abstraction has 91 states and 106 transitions. [2024-11-28 02:17:02,406 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 11.333333333333334) internal successors, (34), 3 states have internal predecessors, (34), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2024-11-28 02:17:02,406 INFO L276 IsEmpty]: Start isEmpty. Operand 91 states and 106 transitions. [2024-11-28 02:17:02,411 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 44 [2024-11-28 02:17:02,411 INFO L210 NwaCegarLoop]: Found error trace [2024-11-28 02:17:02,411 INFO L218 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-28 02:17:02,412 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2024-11-28 02:17:02,412 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2024-11-28 02:17:02,412 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-28 02:17:02,412 INFO L85 PathProgramCache]: Analyzing trace with hash 1564237705, now seen corresponding path program 1 times [2024-11-28 02:17:02,413 INFO L118 FreeRefinementEngine]: Executing refinement strategy CAMEL [2024-11-28 02:17:02,413 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1789331297] [2024-11-28 02:17:02,413 INFO L97 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-28 02:17:02,413 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-28 02:17:02,449 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2024-11-28 02:17:02,449 INFO L357 TraceCheck]: Trace is feasible, we will do another trace check, this time with branch encoders. [2024-11-28 02:17:02,471 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is sat [2024-11-28 02:17:02,506 INFO L130 FreeRefinementEngine]: Strategy CAMEL found a feasible trace [2024-11-28 02:17:02,506 INFO L340 BasicCegarLoop]: Counterexample is feasible [2024-11-28 02:17:02,507 INFO L782 garLoopResultBuilder]: Registering result UNSAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2024-11-28 02:17:02,509 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2024-11-28 02:17:02,513 INFO L422 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1] [2024-11-28 02:17:02,570 INFO L170 ceAbstractionStarter]: Computing trace abstraction results [2024-11-28 02:17:02,573 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 28.11 02:17:02 BoogieIcfgContainer [2024-11-28 02:17:02,573 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2024-11-28 02:17:02,574 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2024-11-28 02:17:02,574 INFO L270 PluginConnector]: Initializing Witness Printer... [2024-11-28 02:17:02,574 INFO L274 PluginConnector]: Witness Printer initialized [2024-11-28 02:17:02,575 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 28.11 02:17:00" (3/4) ... [2024-11-28 02:17:02,576 INFO L140 WitnessPrinter]: Generating witness for reachability counterexample [2024-11-28 02:17:02,667 INFO L129 tionWitnessGenerator]: Generated YAML witness of length 33. [2024-11-28 02:17:02,760 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/witness.graphml [2024-11-28 02:17:02,761 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/witness.yml [2024-11-28 02:17:02,761 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2024-11-28 02:17:02,766 INFO L158 Benchmark]: Toolchain (without parser) took 3463.44ms. Allocated memory is still 117.4MB. Free memory was 91.9MB in the beginning and 66.4MB in the end (delta: 25.4MB). Peak memory consumption was 23.4MB. Max. memory is 16.1GB. [2024-11-28 02:17:02,766 INFO L158 Benchmark]: CDTParser took 0.45ms. Allocated memory is still 117.4MB. Free memory is still 73.0MB. There was no memory consumed. Max. memory is 16.1GB. [2024-11-28 02:17:02,766 INFO L158 Benchmark]: CACSL2BoogieTranslator took 647.90ms. Allocated memory is still 117.4MB. Free memory was 91.9MB in the beginning and 73.1MB in the end (delta: 18.7MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. [2024-11-28 02:17:02,767 INFO L158 Benchmark]: Boogie Procedure Inliner took 58.46ms. Allocated memory is still 117.4MB. Free memory was 73.1MB in the beginning and 71.3MB in the end (delta: 1.8MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-28 02:17:02,767 INFO L158 Benchmark]: Boogie Preprocessor took 47.74ms. Allocated memory is still 117.4MB. Free memory was 71.3MB in the beginning and 69.6MB in the end (delta: 1.7MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-28 02:17:02,767 INFO L158 Benchmark]: RCFGBuilder took 523.41ms. Allocated memory is still 117.4MB. Free memory was 69.6MB in the beginning and 53.5MB in the end (delta: 16.1MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-28 02:17:02,768 INFO L158 Benchmark]: TraceAbstraction took 1987.55ms. Allocated memory is still 117.4MB. Free memory was 52.8MB in the beginning and 74.1MB in the end (delta: -21.3MB). There was no memory consumed. Max. memory is 16.1GB. [2024-11-28 02:17:02,768 INFO L158 Benchmark]: Witness Printer took 187.47ms. Allocated memory is still 117.4MB. Free memory was 74.1MB in the beginning and 66.4MB in the end (delta: 7.7MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2024-11-28 02:17:02,774 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.45ms. Allocated memory is still 117.4MB. Free memory is still 73.0MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 647.90ms. Allocated memory is still 117.4MB. Free memory was 91.9MB in the beginning and 73.1MB in the end (delta: 18.7MB). Peak memory consumption was 16.8MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 58.46ms. Allocated memory is still 117.4MB. Free memory was 73.1MB in the beginning and 71.3MB in the end (delta: 1.8MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Boogie Preprocessor took 47.74ms. Allocated memory is still 117.4MB. Free memory was 71.3MB in the beginning and 69.6MB in the end (delta: 1.7MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 523.41ms. Allocated memory is still 117.4MB. Free memory was 69.6MB in the beginning and 53.5MB in the end (delta: 16.1MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * TraceAbstraction took 1987.55ms. Allocated memory is still 117.4MB. Free memory was 52.8MB in the beginning and 74.1MB in the end (delta: -21.3MB). There was no memory consumed. Max. memory is 16.1GB. * Witness Printer took 187.47ms. Allocated memory is still 117.4MB. Free memory was 74.1MB in the beginning and 66.4MB in the end (delta: 7.7MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] - GenericResultAtLocation [Line: 415]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [415] - GenericResultAtLocation [Line: 603]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [603] - GenericResultAtLocation [Line: 612]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [612] - GenericResultAtLocation [Line: 680]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [680] - GenericResultAtLocation [Line: 770]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [770] - GenericResultAtLocation [Line: 869]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification3_spec.i","") [869] - GenericResultAtLocation [Line: 903]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [903] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - CounterExampleResult [Line: 608]: a call to reach_error is reachable a call to reach_error is reachable We found a FailurePath: [L219] static struct __ACC__ERR *head = (struct __ACC__ERR *)0; [L425] int pumpRunning = 0; [L426] int systemActive = 1; [L682] int waterLevel = 1; [L683] int methaneLevelCritical = 0; [L771] int cleanupTimeShifts = 4; VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L847] int retValue_acc ; [L848] int tmp ; [L852] FCALL select_helpers() [L853] FCALL select_features() [L854] CALL, EXPR valid_product() [L930] int retValue_acc ; [L933] retValue_acc = 1 [L934] return (retValue_acc); VAL [\result=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L854] RET, EXPR valid_product() [L854] tmp = valid_product() [L856] COND TRUE \read(tmp) [L858] FCALL setup() [L859] CALL runTest() [L838] CALL test() [L617] int splverifierCounter ; [L618] int tmp ; [L619] int tmp___0 ; [L620] int tmp___1 ; [L621] int tmp___2 ; [L624] splverifierCounter = 0 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L628] COND TRUE splverifierCounter < 4 VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L634] tmp = __VERIFIER_nondet_int() [L636] COND TRUE \read(tmp) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=1] [L638] CALL waterRise() VAL [\old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=1] [L700] COND TRUE waterLevel < 2 [L701] waterLevel = waterLevel + 1 VAL [\old(waterLevel)=1, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L638] RET waterRise() VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=2] [L644] tmp___0 = __VERIFIER_nondet_int() [L646] COND FALSE !(\read(tmp___0)) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=2] [L654] tmp___2 = __VERIFIER_nondet_int() [L656] COND TRUE \read(tmp___2) VAL [cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, splverifierCounter=0, systemActive=1, waterLevel=2] [L669] CALL timeShift() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L433] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L440] COND TRUE \read(systemActive) [L442] CALL processEnvironment() [L488] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L491] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L506] CALL processEnvironment__wrappee__lowWaterSensor() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L462] int tmp ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L465] COND FALSE !(\read(pumpRunning)) VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L480] FCALL processEnvironment__wrappee__base() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L506] RET processEnvironment__wrappee__lowWaterSensor() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L442] RET processEnvironment() [L448] CALL __utac_acc__Specification3_spec__1() [L871] int tmp ; [L872] int tmp___0 ; [L873] int tmp___1 ; VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L877] CALL, EXPR isMethaneLevelCritical() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L721] int retValue_acc ; [L724] retValue_acc = methaneLevelCritical [L725] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L877] RET, EXPR isMethaneLevelCritical() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L877] tmp = isMethaneLevelCritical() [L879] COND FALSE !(\read(tmp)) [L883] CALL, EXPR getWaterLevel() [L753] int retValue_acc ; [L756] retValue_acc = waterLevel [L757] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L883] RET, EXPR getWaterLevel() [L883] tmp___0 = getWaterLevel() [L885] COND TRUE tmp___0 == 2 [L887] CALL, EXPR isPumpRunning() [L540] int retValue_acc ; [L543] retValue_acc = pumpRunning [L544] return (retValue_acc); VAL [\old(pumpRunning)=0, \old(waterLevel)=2, \result=0, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] [L887] RET, EXPR isPumpRunning() [L887] tmp___1 = isPumpRunning() [L889] COND FALSE !(\read(tmp___1)) [L893] CALL __automaton_fail() [L608] reach_error() VAL [\old(pumpRunning)=0, \old(waterLevel)=2, cleanupTimeShifts=4, head={0:0}, methaneLevelCritical=0, pumpRunning=0, systemActive=1, waterLevel=2] - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 87 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 1.9s, OverallIterations: 6, TraceHistogramMax: 1, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 0.4s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 0.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 187 SdHoareTripleChecker+Valid, 0.1s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 184 mSDsluCounter, 739 SdHoareTripleChecker+Invalid, 0.1s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 313 mSDsCounter, 4 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 33 IncrementalHoareTripleChecker+Invalid, 37 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 4 mSolverCounterUnsat, 426 mSDtfsCounter, 33 mSolverCounterSat, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 20 GetRequests, 12 SyntacticMatches, 0 SemanticMatches, 8 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.1s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=126occurred in iteration=4, InterpolantAutomatonStates: 16, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.1s AutomataMinimizationTime, 5 MinimizatonAttempts, 0 StatesRemovedByMinimization, 0 NontrivialMinimizations, HoareAnnotationStatistics: No data available, RefinementEngineStatistics: TRACE_CHECK: 0.0s SsaConstructionTime, 0.1s SatisfiabilityAnalysisTime, 0.7s InterpolantComputationTime, 202 NumberOfCodeBlocks, 202 NumberOfCodeBlocksAsserted, 6 NumberOfCheckSat, 154 ConstructedInterpolants, 0 QuantifiedInterpolants, 268 SizeOfPredicates, 0 NumberOfNonLiveVariables, 0 ConjunctsInSsa, 0 ConjunctsInUnsatCore, 5 InterpolantComputations, 5 PerfectInterpolantSequences, 0/0 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available, ConComCheckerStatistics: No data available RESULT: Ultimate proved your program to be incorrect! [2024-11-28 02:17:02,799 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_ec3b0e7a-9b05-4566-b918-0fefb3876abc/bin/uautomizer-verify-aQ6SnzHsRB/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:4000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Writing human readable error path to file UltimateCounterExample.errorpath Result: FALSE