./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec4_product53.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 0e0057cc Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec4_product53.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash e91d5c860cfea17112af53939b2fffb1e4c536355098377ab18c754994d1bc2b --- Real Ultimate output --- This is Ultimate 0.2.4-dev-0e0057c [2023-12-02 20:00:49,974 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-12-02 20:00:50,054 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/config/svcomp-Reach-32bit-Taipan_Default.epf [2023-12-02 20:00:50,059 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-12-02 20:00:50,059 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-12-02 20:00:50,080 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-12-02 20:00:50,081 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-12-02 20:00:50,082 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-12-02 20:00:50,083 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-12-02 20:00:50,083 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-12-02 20:00:50,084 INFO L153 SettingsManager]: * User list type=DISABLED [2023-12-02 20:00:50,085 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2023-12-02 20:00:50,085 INFO L153 SettingsManager]: * Explicit value domain=true [2023-12-02 20:00:50,086 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2023-12-02 20:00:50,086 INFO L153 SettingsManager]: * Octagon Domain=false [2023-12-02 20:00:50,087 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2023-12-02 20:00:50,087 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2023-12-02 20:00:50,088 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2023-12-02 20:00:50,088 INFO L153 SettingsManager]: * Interval Domain=false [2023-12-02 20:00:50,089 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2023-12-02 20:00:50,089 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2023-12-02 20:00:50,090 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2023-12-02 20:00:50,090 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-12-02 20:00:50,091 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-12-02 20:00:50,091 INFO L153 SettingsManager]: * sizeof long=4 [2023-12-02 20:00:50,092 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-12-02 20:00:50,092 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-12-02 20:00:50,093 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-12-02 20:00:50,093 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-12-02 20:00:50,094 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-12-02 20:00:50,094 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-12-02 20:00:50,095 INFO L153 SettingsManager]: * sizeof long double=12 [2023-12-02 20:00:50,095 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-12-02 20:00:50,095 INFO L153 SettingsManager]: * Use constant arrays=true [2023-12-02 20:00:50,096 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-12-02 20:00:50,096 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2023-12-02 20:00:50,096 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-12-02 20:00:50,096 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-12-02 20:00:50,096 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-12-02 20:00:50,097 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-12-02 20:00:50,097 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2023-12-02 20:00:50,097 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2023-12-02 20:00:50,097 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-12-02 20:00:50,097 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2023-12-02 20:00:50,098 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-12-02 20:00:50,098 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2023-12-02 20:00:50,098 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-12-02 20:00:50,098 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> e91d5c860cfea17112af53939b2fffb1e4c536355098377ab18c754994d1bc2b [2023-12-02 20:00:50,314 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-12-02 20:00:50,334 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-12-02 20:00:50,336 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-12-02 20:00:50,338 INFO L270 PluginConnector]: Initializing CDTParser... [2023-12-02 20:00:50,338 INFO L274 PluginConnector]: CDTParser initialized [2023-12-02 20:00:50,339 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/../../sv-benchmarks/c/product-lines/minepump_spec4_product53.cil.c [2023-12-02 20:00:53,106 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-12-02 20:00:53,328 INFO L384 CDTParser]: Found 1 translation units. [2023-12-02 20:00:53,329 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/sv-benchmarks/c/product-lines/minepump_spec4_product53.cil.c [2023-12-02 20:00:53,345 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/data/96950a2ec/c2f5be2225bb4836ba8c81d1a491c4e4/FLAG380dfc68f [2023-12-02 20:00:53,361 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/data/96950a2ec/c2f5be2225bb4836ba8c81d1a491c4e4 [2023-12-02 20:00:53,363 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-12-02 20:00:53,365 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-12-02 20:00:53,366 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-12-02 20:00:53,366 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-12-02 20:00:53,371 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-12-02 20:00:53,372 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,373 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@3d5cb21b and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53, skipping insertion in model container [2023-12-02 20:00:53,374 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,422 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-12-02 20:00:53,673 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/sv-benchmarks/c/product-lines/minepump_spec4_product53.cil.c[15987,16000] [2023-12-02 20:00:53,687 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-12-02 20:00:53,718 INFO L202 MainTranslator]: Completed pre-run [2023-12-02 20:00:53,728 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] [2023-12-02 20:00:53,729 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [415] [2023-12-02 20:00:53,730 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [484] [2023-12-02 20:00:53,730 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [717] [2023-12-02 20:00:53,730 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [755] [2023-12-02 20:00:53,730 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [764] [2023-12-02 20:00:53,731 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [868] [2023-12-02 20:00:53,731 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [894] [2023-12-02 20:00:53,780 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/sv-benchmarks/c/product-lines/minepump_spec4_product53.cil.c[15987,16000] [2023-12-02 20:00:53,787 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-12-02 20:00:53,806 INFO L206 MainTranslator]: Completed translation [2023-12-02 20:00:53,806 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53 WrapperNode [2023-12-02 20:00:53,806 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-12-02 20:00:53,807 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-12-02 20:00:53,807 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-12-02 20:00:53,807 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-12-02 20:00:53,813 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,826 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,853 INFO L138 Inliner]: procedures = 56, calls = 102, calls flagged for inlining = 24, calls inlined = 21, statements flattened = 228 [2023-12-02 20:00:53,853 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-12-02 20:00:53,854 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-12-02 20:00:53,854 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-12-02 20:00:53,854 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-12-02 20:00:53,862 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,862 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,865 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,865 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,871 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,875 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,877 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,879 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,882 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-12-02 20:00:53,883 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-12-02 20:00:53,883 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-12-02 20:00:53,883 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-12-02 20:00:53,884 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (1/1) ... [2023-12-02 20:00:53,893 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-12-02 20:00:53,905 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:00:53,917 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-12-02 20:00:53,928 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-12-02 20:00:53,954 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-12-02 20:00:53,954 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-12-02 20:00:53,954 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-12-02 20:00:53,954 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-12-02 20:00:53,954 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-12-02 20:00:53,955 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-12-02 20:00:53,955 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-12-02 20:00:53,955 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 20:00:53,955 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 20:00:53,955 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-12-02 20:00:53,955 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-12-02 20:00:53,955 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__lowWaterSensor [2023-12-02 20:00:53,955 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__lowWaterSensor [2023-12-02 20:00:53,956 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-12-02 20:00:53,956 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-12-02 20:00:53,956 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-12-02 20:00:53,956 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-12-02 20:00:53,956 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-12-02 20:00:53,956 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-12-02 20:00:53,956 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-12-02 20:00:54,033 INFO L241 CfgBuilder]: Building ICFG [2023-12-02 20:00:54,035 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2023-12-02 20:00:54,273 INFO L282 CfgBuilder]: Performing block encoding [2023-12-02 20:00:54,378 INFO L304 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-12-02 20:00:54,378 INFO L309 CfgBuilder]: Removed 2 assume(true) statements. [2023-12-02 20:00:54,379 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 08:00:54 BoogieIcfgContainer [2023-12-02 20:00:54,380 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-12-02 20:00:54,382 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-12-02 20:00:54,382 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-12-02 20:00:54,385 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-12-02 20:00:54,386 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 02.12 08:00:53" (1/3) ... [2023-12-02 20:00:54,386 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6ed871f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.12 08:00:54, skipping insertion in model container [2023-12-02 20:00:54,386 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:00:53" (2/3) ... [2023-12-02 20:00:54,387 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@6ed871f and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.12 08:00:54, skipping insertion in model container [2023-12-02 20:00:54,387 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 08:00:54" (3/3) ... [2023-12-02 20:00:54,388 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec4_product53.cil.c [2023-12-02 20:00:54,403 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-12-02 20:00:54,403 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-12-02 20:00:54,444 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-12-02 20:00:54,449 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@2c143ab9, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2023-12-02 20:00:54,449 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-12-02 20:00:54,452 INFO L276 IsEmpty]: Start isEmpty. Operand has 62 states, 38 states have (on average 1.4473684210526316) internal successors, (55), 48 states have internal predecessors, (55), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 9 states have call predecessors, (14), 14 states have call successors, (14) [2023-12-02 20:00:54,459 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 13 [2023-12-02 20:00:54,459 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:54,460 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:54,460 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:54,464 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:54,465 INFO L85 PathProgramCache]: Analyzing trace with hash -1061095491, now seen corresponding path program 1 times [2023-12-02 20:00:54,472 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:54,472 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [291152227] [2023-12-02 20:00:54,472 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:54,473 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:54,555 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:54,612 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:54,613 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:54,613 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [291152227] [2023-12-02 20:00:54,614 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [291152227] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:54,614 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:54,615 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-12-02 20:00:54,616 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1641755947] [2023-12-02 20:00:54,617 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:54,621 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-12-02 20:00:54,621 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:54,646 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-12-02 20:00:54,646 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-12-02 20:00:54,648 INFO L87 Difference]: Start difference. First operand has 62 states, 38 states have (on average 1.4473684210526316) internal successors, (55), 48 states have internal predecessors, (55), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 9 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:00:54,707 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:54,707 INFO L93 Difference]: Finished difference Result 122 states and 167 transitions. [2023-12-02 20:00:54,708 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-12-02 20:00:54,710 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 12 [2023-12-02 20:00:54,710 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:54,719 INFO L225 Difference]: With dead ends: 122 [2023-12-02 20:00:54,719 INFO L226 Difference]: Without dead ends: 57 [2023-12-02 20:00:54,722 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-12-02 20:00:54,726 INFO L413 NwaCegarLoop]: 62 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 62 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:54,727 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 62 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:00:54,743 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 57 states. [2023-12-02 20:00:54,763 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 57 to 57. [2023-12-02 20:00:54,764 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 57 states, 35 states have (on average 1.3428571428571427) internal successors, (47), 44 states have internal predecessors, (47), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 8 states have call predecessors, (13), 13 states have call successors, (13) [2023-12-02 20:00:54,767 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 57 states to 57 states and 74 transitions. [2023-12-02 20:00:54,768 INFO L78 Accepts]: Start accepts. Automaton has 57 states and 74 transitions. Word has length 12 [2023-12-02 20:00:54,768 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:54,769 INFO L495 AbstractCegarLoop]: Abstraction has 57 states and 74 transitions. [2023-12-02 20:00:54,769 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 5.0) internal successors, (10), 2 states have internal predecessors, (10), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:00:54,769 INFO L276 IsEmpty]: Start isEmpty. Operand 57 states and 74 transitions. [2023-12-02 20:00:54,771 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 14 [2023-12-02 20:00:54,771 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:54,771 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:54,771 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-12-02 20:00:54,772 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:54,772 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:54,773 INFO L85 PathProgramCache]: Analyzing trace with hash -532686779, now seen corresponding path program 1 times [2023-12-02 20:00:54,773 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:54,773 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1939055456] [2023-12-02 20:00:54,773 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:54,774 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:54,792 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:54,859 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:54,860 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:54,860 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1939055456] [2023-12-02 20:00:54,860 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1939055456] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:54,860 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:54,861 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-12-02 20:00:54,861 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [493511548] [2023-12-02 20:00:54,861 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:54,862 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-12-02 20:00:54,862 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:54,863 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-12-02 20:00:54,863 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 20:00:54,863 INFO L87 Difference]: Start difference. First operand 57 states and 74 transitions. Second operand has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:00:54,904 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:54,905 INFO L93 Difference]: Finished difference Result 91 states and 119 transitions. [2023-12-02 20:00:54,905 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-12-02 20:00:54,905 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 13 [2023-12-02 20:00:54,906 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:54,907 INFO L225 Difference]: With dead ends: 91 [2023-12-02 20:00:54,907 INFO L226 Difference]: Without dead ends: 49 [2023-12-02 20:00:54,908 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 20:00:54,910 INFO L413 NwaCegarLoop]: 48 mSDtfsCounter, 7 mSDsluCounter, 39 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 87 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:54,922 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 87 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:00:54,923 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 49 states. [2023-12-02 20:00:54,930 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 49 to 49. [2023-12-02 20:00:54,930 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 49 states, 30 states have (on average 1.3666666666666667) internal successors, (41), 39 states have internal predecessors, (41), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 6 states have call predecessors, (11), 11 states have call successors, (11) [2023-12-02 20:00:54,932 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 49 states to 49 states and 63 transitions. [2023-12-02 20:00:54,932 INFO L78 Accepts]: Start accepts. Automaton has 49 states and 63 transitions. Word has length 13 [2023-12-02 20:00:54,932 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:54,933 INFO L495 AbstractCegarLoop]: Abstraction has 49 states and 63 transitions. [2023-12-02 20:00:54,933 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 3.6666666666666665) internal successors, (11), 3 states have internal predecessors, (11), 1 states have call successors, (2), 1 states have call predecessors, (2), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:00:54,933 INFO L276 IsEmpty]: Start isEmpty. Operand 49 states and 63 transitions. [2023-12-02 20:00:54,934 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 16 [2023-12-02 20:00:54,934 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:54,934 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:54,934 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-12-02 20:00:54,935 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:54,935 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:54,935 INFO L85 PathProgramCache]: Analyzing trace with hash -1939044968, now seen corresponding path program 1 times [2023-12-02 20:00:54,936 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:54,936 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [674636919] [2023-12-02 20:00:54,936 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:54,936 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:54,966 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:55,056 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:55,057 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:55,057 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [674636919] [2023-12-02 20:00:55,057 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [674636919] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:55,058 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:55,058 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-12-02 20:00:55,058 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1721364913] [2023-12-02 20:00:55,058 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:55,059 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2023-12-02 20:00:55,059 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:55,059 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2023-12-02 20:00:55,060 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2023-12-02 20:00:55,060 INFO L87 Difference]: Start difference. First operand 49 states and 63 transitions. Second operand has 4 states, 4 states have (on average 3.5) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:00:55,157 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:55,157 INFO L93 Difference]: Finished difference Result 96 states and 125 transitions. [2023-12-02 20:00:55,157 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2023-12-02 20:00:55,158 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 3.5) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 15 [2023-12-02 20:00:55,158 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:55,159 INFO L225 Difference]: With dead ends: 96 [2023-12-02 20:00:55,159 INFO L226 Difference]: Without dead ends: 49 [2023-12-02 20:00:55,160 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2023-12-02 20:00:55,162 INFO L413 NwaCegarLoop]: 43 mSDtfsCounter, 59 mSDsluCounter, 18 mSDsCounter, 0 mSdLazyCounter, 50 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 59 SdHoareTripleChecker+Valid, 61 SdHoareTripleChecker+Invalid, 56 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 50 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:55,162 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [59 Valid, 61 Invalid, 56 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 50 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 20:00:55,164 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 49 states. [2023-12-02 20:00:55,172 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 49 to 49. [2023-12-02 20:00:55,172 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 49 states, 30 states have (on average 1.3333333333333333) internal successors, (40), 39 states have internal predecessors, (40), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 6 states have call predecessors, (11), 11 states have call successors, (11) [2023-12-02 20:00:55,174 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 49 states to 49 states and 62 transitions. [2023-12-02 20:00:55,174 INFO L78 Accepts]: Start accepts. Automaton has 49 states and 62 transitions. Word has length 15 [2023-12-02 20:00:55,174 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:55,174 INFO L495 AbstractCegarLoop]: Abstraction has 49 states and 62 transitions. [2023-12-02 20:00:55,175 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 3.5) internal successors, (14), 3 states have internal predecessors, (14), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:00:55,175 INFO L276 IsEmpty]: Start isEmpty. Operand 49 states and 62 transitions. [2023-12-02 20:00:55,176 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2023-12-02 20:00:55,176 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:55,176 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:55,177 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-12-02 20:00:55,177 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:55,177 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:55,178 INFO L85 PathProgramCache]: Analyzing trace with hash 1007454223, now seen corresponding path program 1 times [2023-12-02 20:00:55,178 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:55,178 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1185022526] [2023-12-02 20:00:55,178 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:55,178 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:55,194 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:55,252 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:55,252 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:55,252 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1185022526] [2023-12-02 20:00:55,253 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1185022526] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:55,253 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:55,253 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-12-02 20:00:55,253 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1155241509] [2023-12-02 20:00:55,253 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:55,254 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-12-02 20:00:55,254 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:55,255 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-12-02 20:00:55,255 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 20:00:55,255 INFO L87 Difference]: Start difference. First operand 49 states and 62 transitions. Second operand has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-12-02 20:00:55,318 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:55,318 INFO L93 Difference]: Finished difference Result 130 states and 170 transitions. [2023-12-02 20:00:55,318 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-12-02 20:00:55,319 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) Word has length 21 [2023-12-02 20:00:55,319 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:55,320 INFO L225 Difference]: With dead ends: 130 [2023-12-02 20:00:55,321 INFO L226 Difference]: Without dead ends: 83 [2023-12-02 20:00:55,322 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 4 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 20:00:55,323 INFO L413 NwaCegarLoop]: 56 mSDtfsCounter, 37 mSDsluCounter, 37 mSDsCounter, 0 mSdLazyCounter, 32 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 37 SdHoareTripleChecker+Valid, 93 SdHoareTripleChecker+Invalid, 38 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 32 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:55,324 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [37 Valid, 93 Invalid, 38 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 32 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:00:55,325 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 83 states. [2023-12-02 20:00:55,342 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 83 to 81. [2023-12-02 20:00:55,343 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 81 states, 53 states have (on average 1.2641509433962264) internal successors, (67), 61 states have internal predecessors, (67), 14 states have call successors, (14), 13 states have call predecessors, (14), 13 states have return successors, (20), 12 states have call predecessors, (20), 14 states have call successors, (20) [2023-12-02 20:00:55,344 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 81 states to 81 states and 101 transitions. [2023-12-02 20:00:55,345 INFO L78 Accepts]: Start accepts. Automaton has 81 states and 101 transitions. Word has length 21 [2023-12-02 20:00:55,345 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:55,345 INFO L495 AbstractCegarLoop]: Abstraction has 81 states and 101 transitions. [2023-12-02 20:00:55,345 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 6.0) internal successors, (18), 3 states have internal predecessors, (18), 2 states have call successors, (2), 2 states have call predecessors, (2), 1 states have return successors, (1), 1 states have call predecessors, (1), 1 states have call successors, (1) [2023-12-02 20:00:55,346 INFO L276 IsEmpty]: Start isEmpty. Operand 81 states and 101 transitions. [2023-12-02 20:00:55,347 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2023-12-02 20:00:55,347 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:55,347 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:55,347 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-12-02 20:00:55,348 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:55,348 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:55,348 INFO L85 PathProgramCache]: Analyzing trace with hash 1100949140, now seen corresponding path program 1 times [2023-12-02 20:00:55,348 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:55,349 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [479122484] [2023-12-02 20:00:55,349 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:55,349 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:55,365 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:55,572 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:55,573 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:55,573 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [479122484] [2023-12-02 20:00:55,573 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [479122484] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:55,573 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:55,573 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-12-02 20:00:55,574 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1133956820] [2023-12-02 20:00:55,574 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:55,574 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-12-02 20:00:55,574 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:55,575 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-12-02 20:00:55,575 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2023-12-02 20:00:55,575 INFO L87 Difference]: Start difference. First operand 81 states and 101 transitions. Second operand has 6 states, 6 states have (on average 3.8333333333333335) internal successors, (23), 6 states have internal predecessors, (23), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-12-02 20:00:55,733 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:55,734 INFO L93 Difference]: Finished difference Result 231 states and 288 transitions. [2023-12-02 20:00:55,734 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2023-12-02 20:00:55,734 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 3.8333333333333335) internal successors, (23), 6 states have internal predecessors, (23), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 28 [2023-12-02 20:00:55,734 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:55,736 INFO L225 Difference]: With dead ends: 231 [2023-12-02 20:00:55,737 INFO L226 Difference]: Without dead ends: 152 [2023-12-02 20:00:55,737 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 9 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2023-12-02 20:00:55,739 INFO L413 NwaCegarLoop]: 66 mSDtfsCounter, 60 mSDsluCounter, 138 mSDsCounter, 0 mSdLazyCounter, 142 mSolverCounterSat, 6 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 204 SdHoareTripleChecker+Invalid, 148 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 6 IncrementalHoareTripleChecker+Valid, 142 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:55,739 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 204 Invalid, 148 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [6 Valid, 142 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 20:00:55,740 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 152 states. [2023-12-02 20:00:55,764 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 152 to 124. [2023-12-02 20:00:55,764 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 124 states, 83 states have (on average 1.2409638554216869) internal successors, (103), 92 states have internal predecessors, (103), 19 states have call successors, (19), 18 states have call predecessors, (19), 21 states have return successors, (28), 19 states have call predecessors, (28), 19 states have call successors, (28) [2023-12-02 20:00:55,766 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 124 states to 124 states and 150 transitions. [2023-12-02 20:00:55,766 INFO L78 Accepts]: Start accepts. Automaton has 124 states and 150 transitions. Word has length 28 [2023-12-02 20:00:55,767 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:55,767 INFO L495 AbstractCegarLoop]: Abstraction has 124 states and 150 transitions. [2023-12-02 20:00:55,767 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 3.8333333333333335) internal successors, (23), 6 states have internal predecessors, (23), 3 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-12-02 20:00:55,767 INFO L276 IsEmpty]: Start isEmpty. Operand 124 states and 150 transitions. [2023-12-02 20:00:55,769 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2023-12-02 20:00:55,769 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:55,769 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:55,769 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2023-12-02 20:00:55,770 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:55,770 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:55,770 INFO L85 PathProgramCache]: Analyzing trace with hash 1674195004, now seen corresponding path program 1 times [2023-12-02 20:00:55,770 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:55,771 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [993346808] [2023-12-02 20:00:55,771 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:55,777 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:55,791 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:55,987 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:55,987 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:55,987 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [993346808] [2023-12-02 20:00:55,988 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [993346808] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:55,988 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:55,988 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2023-12-02 20:00:55,988 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1063801238] [2023-12-02 20:00:55,988 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:55,989 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2023-12-02 20:00:55,989 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:55,990 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2023-12-02 20:00:55,990 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2023-12-02 20:00:55,990 INFO L87 Difference]: Start difference. First operand 124 states and 150 transitions. Second operand has 8 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 4 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2023-12-02 20:00:56,361 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:56,361 INFO L93 Difference]: Finished difference Result 302 states and 371 transitions. [2023-12-02 20:00:56,362 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 11 states. [2023-12-02 20:00:56,362 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 4 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) Word has length 31 [2023-12-02 20:00:56,362 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:56,365 INFO L225 Difference]: With dead ends: 302 [2023-12-02 20:00:56,365 INFO L226 Difference]: Without dead ends: 213 [2023-12-02 20:00:56,366 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 15 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 10 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=46, Invalid=86, Unknown=0, NotChecked=0, Total=132 [2023-12-02 20:00:56,367 INFO L413 NwaCegarLoop]: 53 mSDtfsCounter, 150 mSDsluCounter, 145 mSDsCounter, 0 mSdLazyCounter, 355 mSolverCounterSat, 50 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 160 SdHoareTripleChecker+Valid, 198 SdHoareTripleChecker+Invalid, 405 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 50 IncrementalHoareTripleChecker+Valid, 355 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:56,367 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [160 Valid, 198 Invalid, 405 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [50 Valid, 355 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2023-12-02 20:00:56,368 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 213 states. [2023-12-02 20:00:56,398 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 213 to 200. [2023-12-02 20:00:56,398 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 200 states, 134 states have (on average 1.2313432835820894) internal successors, (165), 150 states have internal predecessors, (165), 31 states have call successors, (31), 27 states have call predecessors, (31), 34 states have return successors, (47), 32 states have call predecessors, (47), 31 states have call successors, (47) [2023-12-02 20:00:56,400 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 200 states to 200 states and 243 transitions. [2023-12-02 20:00:56,401 INFO L78 Accepts]: Start accepts. Automaton has 200 states and 243 transitions. Word has length 31 [2023-12-02 20:00:56,401 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:56,401 INFO L495 AbstractCegarLoop]: Abstraction has 200 states and 243 transitions. [2023-12-02 20:00:56,401 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.4285714285714284) internal successors, (24), 7 states have internal predecessors, (24), 4 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 3 states have call predecessors, (3), 3 states have call successors, (3) [2023-12-02 20:00:56,401 INFO L276 IsEmpty]: Start isEmpty. Operand 200 states and 243 transitions. [2023-12-02 20:00:56,402 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 32 [2023-12-02 20:00:56,403 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:56,403 INFO L195 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:56,403 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2023-12-02 20:00:56,403 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:56,403 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:56,404 INFO L85 PathProgramCache]: Analyzing trace with hash 217196979, now seen corresponding path program 1 times [2023-12-02 20:00:56,404 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:56,404 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [287383746] [2023-12-02 20:00:56,404 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:56,404 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:56,416 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:56,511 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:56,511 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:56,512 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [287383746] [2023-12-02 20:00:56,512 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [287383746] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:56,512 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:56,512 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2023-12-02 20:00:56,512 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1257512180] [2023-12-02 20:00:56,512 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:56,513 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2023-12-02 20:00:56,513 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:56,513 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2023-12-02 20:00:56,514 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2023-12-02 20:00:56,514 INFO L87 Difference]: Start difference. First operand 200 states and 243 transitions. Second operand has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2023-12-02 20:00:56,607 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:56,607 INFO L93 Difference]: Finished difference Result 399 states and 486 transitions. [2023-12-02 20:00:56,607 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2023-12-02 20:00:56,608 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 31 [2023-12-02 20:00:56,608 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:56,610 INFO L225 Difference]: With dead ends: 399 [2023-12-02 20:00:56,610 INFO L226 Difference]: Without dead ends: 201 [2023-12-02 20:00:56,611 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=13, Invalid=17, Unknown=0, NotChecked=0, Total=30 [2023-12-02 20:00:56,612 INFO L413 NwaCegarLoop]: 51 mSDtfsCounter, 28 mSDsluCounter, 140 mSDsCounter, 0 mSdLazyCounter, 69 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 28 SdHoareTripleChecker+Valid, 191 SdHoareTripleChecker+Invalid, 70 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 69 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:56,613 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [28 Valid, 191 Invalid, 70 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 69 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 20:00:56,614 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 201 states. [2023-12-02 20:00:56,640 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 201 to 199. [2023-12-02 20:00:56,640 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 199 states, 133 states have (on average 1.218045112781955) internal successors, (162), 149 states have internal predecessors, (162), 31 states have call successors, (31), 27 states have call predecessors, (31), 34 states have return successors, (47), 32 states have call predecessors, (47), 31 states have call successors, (47) [2023-12-02 20:00:56,642 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 199 states to 199 states and 240 transitions. [2023-12-02 20:00:56,643 INFO L78 Accepts]: Start accepts. Automaton has 199 states and 240 transitions. Word has length 31 [2023-12-02 20:00:56,643 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:56,643 INFO L495 AbstractCegarLoop]: Abstraction has 199 states and 240 transitions. [2023-12-02 20:00:56,643 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.8) internal successors, (24), 5 states have internal predecessors, (24), 3 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2023-12-02 20:00:56,643 INFO L276 IsEmpty]: Start isEmpty. Operand 199 states and 240 transitions. [2023-12-02 20:00:56,645 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2023-12-02 20:00:56,646 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:56,646 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:56,646 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2023-12-02 20:00:56,646 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:56,647 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:56,647 INFO L85 PathProgramCache]: Analyzing trace with hash 609645850, now seen corresponding path program 1 times [2023-12-02 20:00:56,647 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:56,647 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [713273730] [2023-12-02 20:00:56,647 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:56,647 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:56,667 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:56,725 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 7 trivial. 0 not checked. [2023-12-02 20:00:56,726 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:56,726 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [713273730] [2023-12-02 20:00:56,726 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [713273730] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:56,726 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:00:56,726 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2023-12-02 20:00:56,726 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [728928129] [2023-12-02 20:00:56,727 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:56,727 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2023-12-02 20:00:56,727 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:56,728 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2023-12-02 20:00:56,728 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2023-12-02 20:00:56,728 INFO L87 Difference]: Start difference. First operand 199 states and 240 transitions. Second operand has 4 states, 4 states have (on average 8.5) internal successors, (34), 4 states have internal predecessors, (34), 3 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2023-12-02 20:00:56,827 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:56,827 INFO L93 Difference]: Finished difference Result 493 states and 604 transitions. [2023-12-02 20:00:56,829 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2023-12-02 20:00:56,829 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 8.5) internal successors, (34), 4 states have internal predecessors, (34), 3 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) Word has length 50 [2023-12-02 20:00:56,829 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:56,832 INFO L225 Difference]: With dead ends: 493 [2023-12-02 20:00:56,832 INFO L226 Difference]: Without dead ends: 397 [2023-12-02 20:00:56,833 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 5 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2023-12-02 20:00:56,834 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 43 mSDsluCounter, 93 mSDsCounter, 0 mSdLazyCounter, 53 mSolverCounterSat, 3 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 44 SdHoareTripleChecker+Valid, 142 SdHoareTripleChecker+Invalid, 56 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 3 IncrementalHoareTripleChecker+Valid, 53 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:56,834 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [44 Valid, 142 Invalid, 56 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [3 Valid, 53 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:00:56,836 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 397 states. [2023-12-02 20:00:56,882 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 397 to 377. [2023-12-02 20:00:56,883 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 377 states, 258 states have (on average 1.2170542635658914) internal successors, (314), 282 states have internal predecessors, (314), 55 states have call successors, (55), 49 states have call predecessors, (55), 63 states have return successors, (87), 59 states have call predecessors, (87), 55 states have call successors, (87) [2023-12-02 20:00:56,886 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 377 states to 377 states and 456 transitions. [2023-12-02 20:00:56,886 INFO L78 Accepts]: Start accepts. Automaton has 377 states and 456 transitions. Word has length 50 [2023-12-02 20:00:56,887 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:56,887 INFO L495 AbstractCegarLoop]: Abstraction has 377 states and 456 transitions. [2023-12-02 20:00:56,887 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 8.5) internal successors, (34), 4 states have internal predecessors, (34), 3 states have call successors, (6), 2 states have call predecessors, (6), 1 states have return successors, (5), 3 states have call predecessors, (5), 3 states have call successors, (5) [2023-12-02 20:00:56,887 INFO L276 IsEmpty]: Start isEmpty. Operand 377 states and 456 transitions. [2023-12-02 20:00:56,889 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 54 [2023-12-02 20:00:56,890 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:56,890 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:56,890 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7 [2023-12-02 20:00:56,890 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:56,891 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:56,891 INFO L85 PathProgramCache]: Analyzing trace with hash 1675083151, now seen corresponding path program 1 times [2023-12-02 20:00:56,891 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:56,891 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [173065910] [2023-12-02 20:00:56,891 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:56,891 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:56,909 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:57,413 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 0 proven. 13 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:00:57,413 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:57,413 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [173065910] [2023-12-02 20:00:57,413 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [173065910] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:00:57,413 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1702709589] [2023-12-02 20:00:57,414 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:57,414 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:00:57,414 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:00:57,417 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:00:57,425 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2023-12-02 20:00:57,511 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:57,514 INFO L262 TraceCheckSpWp]: Trace formula consists of 232 conjuncts, 7 conjunts are in the unsatisfiable core [2023-12-02 20:00:57,520 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:00:57,571 INFO L134 CoverageAnalysis]: Checked inductivity of 13 backedges. 3 proven. 0 refuted. 0 times theorem prover too weak. 10 trivial. 0 not checked. [2023-12-02 20:00:57,571 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2023-12-02 20:00:57,572 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1702709589] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:00:57,572 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2023-12-02 20:00:57,572 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [14] total 16 [2023-12-02 20:00:57,572 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [639753582] [2023-12-02 20:00:57,573 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:00:57,573 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2023-12-02 20:00:57,573 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:00:57,574 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2023-12-02 20:00:57,574 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=44, Invalid=196, Unknown=0, NotChecked=0, Total=240 [2023-12-02 20:00:57,574 INFO L87 Difference]: Start difference. First operand 377 states and 456 transitions. Second operand has 4 states, 4 states have (on average 8.5) internal successors, (34), 4 states have internal predecessors, (34), 1 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (6), 2 states have call predecessors, (6), 1 states have call successors, (6) [2023-12-02 20:00:57,672 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:00:57,672 INFO L93 Difference]: Finished difference Result 389 states and 467 transitions. [2023-12-02 20:00:57,673 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2023-12-02 20:00:57,673 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 8.5) internal successors, (34), 4 states have internal predecessors, (34), 1 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (6), 2 states have call predecessors, (6), 1 states have call successors, (6) Word has length 53 [2023-12-02 20:00:57,673 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:00:57,676 INFO L225 Difference]: With dead ends: 389 [2023-12-02 20:00:57,676 INFO L226 Difference]: Without dead ends: 387 [2023-12-02 20:00:57,677 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 68 GetRequests, 53 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 58 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=48, Invalid=224, Unknown=0, NotChecked=0, Total=272 [2023-12-02 20:00:57,677 INFO L413 NwaCegarLoop]: 52 mSDtfsCounter, 43 mSDsluCounter, 88 mSDsCounter, 0 mSdLazyCounter, 55 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 43 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 60 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 55 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:00:57,678 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [43 Valid, 140 Invalid, 60 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 55 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:00:57,679 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 387 states. [2023-12-02 20:00:57,718 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 387 to 377. [2023-12-02 20:00:57,719 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 377 states, 258 states have (on average 1.2015503875968991) internal successors, (310), 282 states have internal predecessors, (310), 55 states have call successors, (55), 49 states have call predecessors, (55), 63 states have return successors, (87), 59 states have call predecessors, (87), 55 states have call successors, (87) [2023-12-02 20:00:57,722 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 377 states to 377 states and 452 transitions. [2023-12-02 20:00:57,723 INFO L78 Accepts]: Start accepts. Automaton has 377 states and 452 transitions. Word has length 53 [2023-12-02 20:00:57,723 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:00:57,723 INFO L495 AbstractCegarLoop]: Abstraction has 377 states and 452 transitions. [2023-12-02 20:00:57,723 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 8.5) internal successors, (34), 4 states have internal predecessors, (34), 1 states have call successors, (6), 1 states have call predecessors, (6), 2 states have return successors, (6), 2 states have call predecessors, (6), 1 states have call successors, (6) [2023-12-02 20:00:57,724 INFO L276 IsEmpty]: Start isEmpty. Operand 377 states and 452 transitions. [2023-12-02 20:00:57,725 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 59 [2023-12-02 20:00:57,725 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:00:57,726 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:00:57,734 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2023-12-02 20:00:57,929 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable8 [2023-12-02 20:00:57,929 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:00:57,930 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:00:57,930 INFO L85 PathProgramCache]: Analyzing trace with hash -66929282, now seen corresponding path program 1 times [2023-12-02 20:00:57,930 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:00:57,930 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [50673513] [2023-12-02 20:00:57,930 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:57,930 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:00:57,946 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:58,051 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 16 proven. 4 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2023-12-02 20:00:58,052 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:00:58,052 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [50673513] [2023-12-02 20:00:58,052 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [50673513] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:00:58,052 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2138791275] [2023-12-02 20:00:58,052 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:00:58,052 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:00:58,052 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:00:58,053 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:00:58,057 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2023-12-02 20:00:58,155 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:00:58,157 INFO L262 TraceCheckSpWp]: Trace formula consists of 250 conjuncts, 6 conjunts are in the unsatisfiable core [2023-12-02 20:00:58,160 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:00:58,250 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 16 proven. 4 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2023-12-02 20:00:58,251 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 20:00:58,390 INFO L134 CoverageAnalysis]: Checked inductivity of 23 backedges. 16 proven. 4 refuted. 0 times theorem prover too weak. 3 trivial. 0 not checked. [2023-12-02 20:00:58,390 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2138791275] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 20:00:58,391 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2026682101] [2023-12-02 20:00:58,420 INFO L159 IcfgInterpreter]: Started Sifa with 36 locations of interest [2023-12-02 20:00:58,420 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 20:00:58,424 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 20:00:58,429 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 20:00:58,429 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 20:01:00,782 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 137 for LOIs [2023-12-02 20:01:00,881 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 41 for LOIs [2023-12-02 20:01:01,046 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 44 for LOIs [2023-12-02 20:01:01,107 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 34 for LOIs [2023-12-02 20:01:01,147 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 20:01:03,328 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSifa [2026682101] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:03,328 INFO L185 FreeRefinementEngine]: Found 1 perfect and 3 imperfect interpolant sequences. [2023-12-02 20:01:03,329 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [25] imperfect sequences [7, 5, 5] total 35 [2023-12-02 20:01:03,329 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1332996204] [2023-12-02 20:01:03,329 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:03,330 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 26 states [2023-12-02 20:01:03,330 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:03,330 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 26 interpolants. [2023-12-02 20:01:03,331 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=179, Invalid=1011, Unknown=0, NotChecked=0, Total=1190 [2023-12-02 20:01:03,331 INFO L87 Difference]: Start difference. First operand 377 states and 452 transitions. Second operand has 26 states, 20 states have (on average 1.45) internal successors, (29), 23 states have internal predecessors, (29), 5 states have call successors, (5), 4 states have call predecessors, (5), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2023-12-02 20:01:07,654 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:07,654 INFO L93 Difference]: Finished difference Result 748 states and 957 transitions. [2023-12-02 20:01:07,655 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 41 states. [2023-12-02 20:01:07,655 INFO L78 Accepts]: Start accepts. Automaton has has 26 states, 20 states have (on average 1.45) internal successors, (29), 23 states have internal predecessors, (29), 5 states have call successors, (5), 4 states have call predecessors, (5), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) Word has length 58 [2023-12-02 20:01:07,655 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:07,659 INFO L225 Difference]: With dead ends: 748 [2023-12-02 20:01:07,660 INFO L226 Difference]: Without dead ends: 567 [2023-12-02 20:01:07,662 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 206 GetRequests, 144 SyntacticMatches, 4 SemanticMatches, 58 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1150 ImplicationChecksByTransitivity, 5.0s TimeCoverageRelationStatistics Valid=476, Invalid=3064, Unknown=0, NotChecked=0, Total=3540 [2023-12-02 20:01:07,663 INFO L413 NwaCegarLoop]: 32 mSDtfsCounter, 173 mSDsluCounter, 274 mSDsCounter, 0 mSdLazyCounter, 1189 mSolverCounterSat, 126 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 174 SdHoareTripleChecker+Valid, 306 SdHoareTripleChecker+Invalid, 1315 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 126 IncrementalHoareTripleChecker+Valid, 1189 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:07,663 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [174 Valid, 306 Invalid, 1315 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [126 Valid, 1189 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2023-12-02 20:01:07,665 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 567 states. [2023-12-02 20:01:07,714 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 567 to 480. [2023-12-02 20:01:07,714 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 480 states, 332 states have (on average 1.2078313253012047) internal successors, (401), 361 states have internal predecessors, (401), 69 states have call successors, (69), 59 states have call predecessors, (69), 78 states have return successors, (113), 77 states have call predecessors, (113), 69 states have call successors, (113) [2023-12-02 20:01:07,717 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 480 states to 480 states and 583 transitions. [2023-12-02 20:01:07,717 INFO L78 Accepts]: Start accepts. Automaton has 480 states and 583 transitions. Word has length 58 [2023-12-02 20:01:07,717 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:07,718 INFO L495 AbstractCegarLoop]: Abstraction has 480 states and 583 transitions. [2023-12-02 20:01:07,718 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 26 states, 20 states have (on average 1.45) internal successors, (29), 23 states have internal predecessors, (29), 5 states have call successors, (5), 4 states have call predecessors, (5), 4 states have return successors, (5), 4 states have call predecessors, (5), 5 states have call successors, (5) [2023-12-02 20:01:07,718 INFO L276 IsEmpty]: Start isEmpty. Operand 480 states and 583 transitions. [2023-12-02 20:01:07,719 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 61 [2023-12-02 20:01:07,720 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:07,720 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:07,724 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2023-12-02 20:01:07,920 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2023-12-02 20:01:07,920 INFO L420 AbstractCegarLoop]: === Iteration 11 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:07,921 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:07,921 INFO L85 PathProgramCache]: Analyzing trace with hash 1582612756, now seen corresponding path program 1 times [2023-12-02 20:01:07,921 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:07,921 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1395440334] [2023-12-02 20:01:07,921 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:07,921 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:07,935 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:08,011 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 14 proven. 4 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2023-12-02 20:01:08,011 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:08,011 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1395440334] [2023-12-02 20:01:08,011 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1395440334] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:08,011 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1358122069] [2023-12-02 20:01:08,012 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:08,012 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:08,012 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:08,013 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:08,015 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2023-12-02 20:01:08,092 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:08,093 INFO L262 TraceCheckSpWp]: Trace formula consists of 245 conjuncts, 4 conjunts are in the unsatisfiable core [2023-12-02 20:01:08,096 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:08,129 INFO L134 CoverageAnalysis]: Checked inductivity of 24 backedges. 24 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:01:08,130 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2023-12-02 20:01:08,130 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1358122069] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:08,130 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2023-12-02 20:01:08,130 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [5] total 6 [2023-12-02 20:01:08,130 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [854295797] [2023-12-02 20:01:08,130 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:08,131 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-12-02 20:01:08,131 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:08,131 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-12-02 20:01:08,132 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=12, Invalid=18, Unknown=0, NotChecked=0, Total=30 [2023-12-02 20:01:08,132 INFO L87 Difference]: Start difference. First operand 480 states and 583 transitions. Second operand has 3 states, 3 states have (on average 15.0) internal successors, (45), 3 states have internal predecessors, (45), 3 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2023-12-02 20:01:08,204 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:08,205 INFO L93 Difference]: Finished difference Result 693 states and 858 transitions. [2023-12-02 20:01:08,206 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-12-02 20:01:08,206 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 15.0) internal successors, (45), 3 states have internal predecessors, (45), 3 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) Word has length 60 [2023-12-02 20:01:08,206 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:08,209 INFO L225 Difference]: With dead ends: 693 [2023-12-02 20:01:08,209 INFO L226 Difference]: Without dead ends: 407 [2023-12-02 20:01:08,210 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 66 GetRequests, 62 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=12, Invalid=18, Unknown=0, NotChecked=0, Total=30 [2023-12-02 20:01:08,211 INFO L413 NwaCegarLoop]: 65 mSDtfsCounter, 27 mSDsluCounter, 32 mSDsCounter, 0 mSdLazyCounter, 36 mSolverCounterSat, 2 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 27 SdHoareTripleChecker+Valid, 97 SdHoareTripleChecker+Invalid, 38 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 2 IncrementalHoareTripleChecker+Valid, 36 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:08,211 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [27 Valid, 97 Invalid, 38 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [2 Valid, 36 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:01:08,212 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 407 states. [2023-12-02 20:01:08,248 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 407 to 407. [2023-12-02 20:01:08,249 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 407 states, 281 states have (on average 1.1743772241992882) internal successors, (330), 304 states have internal predecessors, (330), 58 states have call successors, (58), 53 states have call predecessors, (58), 67 states have return successors, (80), 64 states have call predecessors, (80), 58 states have call successors, (80) [2023-12-02 20:01:08,251 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 407 states to 407 states and 468 transitions. [2023-12-02 20:01:08,251 INFO L78 Accepts]: Start accepts. Automaton has 407 states and 468 transitions. Word has length 60 [2023-12-02 20:01:08,251 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:08,251 INFO L495 AbstractCegarLoop]: Abstraction has 407 states and 468 transitions. [2023-12-02 20:01:08,252 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 15.0) internal successors, (45), 3 states have internal predecessors, (45), 3 states have call successors, (8), 3 states have call predecessors, (8), 3 states have return successors, (7), 3 states have call predecessors, (7), 3 states have call successors, (7) [2023-12-02 20:01:08,252 INFO L276 IsEmpty]: Start isEmpty. Operand 407 states and 468 transitions. [2023-12-02 20:01:08,253 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 62 [2023-12-02 20:01:08,253 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:08,253 INFO L195 NwaCegarLoop]: trace histogram [2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:08,258 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2023-12-02 20:01:08,454 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2023-12-02 20:01:08,454 INFO L420 AbstractCegarLoop]: === Iteration 12 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:08,454 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:08,454 INFO L85 PathProgramCache]: Analyzing trace with hash -1272206374, now seen corresponding path program 1 times [2023-12-02 20:01:08,455 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:08,455 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [723846694] [2023-12-02 20:01:08,455 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:08,455 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:08,470 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:08,863 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 0 proven. 17 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2023-12-02 20:01:08,864 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:08,864 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [723846694] [2023-12-02 20:01:08,864 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [723846694] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:08,864 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [594873203] [2023-12-02 20:01:08,864 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:08,864 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:08,864 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:08,865 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:08,868 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2023-12-02 20:01:08,946 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:08,948 INFO L262 TraceCheckSpWp]: Trace formula consists of 253 conjuncts, 31 conjunts are in the unsatisfiable core [2023-12-02 20:01:08,951 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:09,192 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 8 proven. 9 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2023-12-02 20:01:09,192 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 20:01:09,484 INFO L134 CoverageAnalysis]: Checked inductivity of 21 backedges. 8 proven. 5 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2023-12-02 20:01:09,484 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [594873203] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 20:01:09,484 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1814678027] [2023-12-02 20:01:09,486 INFO L159 IcfgInterpreter]: Started Sifa with 41 locations of interest [2023-12-02 20:01:09,487 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 20:01:09,487 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 20:01:09,487 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 20:01:09,487 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 20:01:11,075 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 10 for LOIs [2023-12-02 20:01:11,077 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 24 for LOIs [2023-12-02 20:01:11,178 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 34 for LOIs [2023-12-02 20:01:11,266 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 37 for LOIs [2023-12-02 20:01:11,323 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 28 for LOIs [2023-12-02 20:01:11,327 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 20:01:13,139 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9332#(and (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 0)) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (= |timeShift_isPumpRunning_#res#1| ~pumpRunning~0) (= |timeShift_getWaterLevel_#res#1| 0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~9#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1|) (= ~waterLevel~0 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)))' at error location [2023-12-02 20:01:13,139 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 20:01:13,140 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 20:01:13,140 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 11, 13] total 34 [2023-12-02 20:01:13,140 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2037739518] [2023-12-02 20:01:13,140 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 20:01:13,141 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 34 states [2023-12-02 20:01:13,141 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:13,142 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 34 interpolants. [2023-12-02 20:01:13,143 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=380, Invalid=3652, Unknown=0, NotChecked=0, Total=4032 [2023-12-02 20:01:13,144 INFO L87 Difference]: Start difference. First operand 407 states and 468 transitions. Second operand has 34 states, 31 states have (on average 3.4838709677419355) internal successors, (108), 31 states have internal predecessors, (108), 13 states have call successors, (20), 10 states have call predecessors, (20), 9 states have return successors, (18), 13 states have call predecessors, (18), 11 states have call successors, (18) [2023-12-02 20:01:17,199 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:17,200 INFO L93 Difference]: Finished difference Result 1481 states and 1765 transitions. [2023-12-02 20:01:17,200 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 95 states. [2023-12-02 20:01:17,201 INFO L78 Accepts]: Start accepts. Automaton has has 34 states, 31 states have (on average 3.4838709677419355) internal successors, (108), 31 states have internal predecessors, (108), 13 states have call successors, (20), 10 states have call predecessors, (20), 9 states have return successors, (18), 13 states have call predecessors, (18), 11 states have call successors, (18) Word has length 61 [2023-12-02 20:01:17,201 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:17,208 INFO L225 Difference]: With dead ends: 1481 [2023-12-02 20:01:17,208 INFO L226 Difference]: Without dead ends: 1268 [2023-12-02 20:01:17,216 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 298 GetRequests, 150 SyntacticMatches, 2 SemanticMatches, 146 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 7834 ImplicationChecksByTransitivity, 4.6s TimeCoverageRelationStatistics Valid=2163, Invalid=19593, Unknown=0, NotChecked=0, Total=21756 [2023-12-02 20:01:17,217 INFO L413 NwaCegarLoop]: 66 mSDtfsCounter, 1691 mSDsluCounter, 627 mSDsCounter, 0 mSdLazyCounter, 2014 mSolverCounterSat, 1137 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1699 SdHoareTripleChecker+Valid, 693 SdHoareTripleChecker+Invalid, 3151 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1137 IncrementalHoareTripleChecker+Valid, 2014 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:17,217 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1699 Valid, 693 Invalid, 3151 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1137 Valid, 2014 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2023-12-02 20:01:17,219 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1268 states. [2023-12-02 20:01:17,309 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1268 to 855. [2023-12-02 20:01:17,310 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 855 states, 584 states have (on average 1.1506849315068493) internal successors, (672), 628 states have internal predecessors, (672), 115 states have call successors, (115), 109 states have call predecessors, (115), 155 states have return successors, (175), 139 states have call predecessors, (175), 115 states have call successors, (175) [2023-12-02 20:01:17,315 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 855 states to 855 states and 962 transitions. [2023-12-02 20:01:17,315 INFO L78 Accepts]: Start accepts. Automaton has 855 states and 962 transitions. Word has length 61 [2023-12-02 20:01:17,315 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:17,316 INFO L495 AbstractCegarLoop]: Abstraction has 855 states and 962 transitions. [2023-12-02 20:01:17,316 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 34 states, 31 states have (on average 3.4838709677419355) internal successors, (108), 31 states have internal predecessors, (108), 13 states have call successors, (20), 10 states have call predecessors, (20), 9 states have return successors, (18), 13 states have call predecessors, (18), 11 states have call successors, (18) [2023-12-02 20:01:17,316 INFO L276 IsEmpty]: Start isEmpty. Operand 855 states and 962 transitions. [2023-12-02 20:01:17,318 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2023-12-02 20:01:17,318 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:17,318 INFO L195 NwaCegarLoop]: trace histogram [3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:17,323 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2023-12-02 20:01:17,521 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2023-12-02 20:01:17,521 INFO L420 AbstractCegarLoop]: === Iteration 13 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:17,522 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:17,522 INFO L85 PathProgramCache]: Analyzing trace with hash -1532002568, now seen corresponding path program 2 times [2023-12-02 20:01:17,522 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:17,522 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [774167843] [2023-12-02 20:01:17,522 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:17,522 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:17,539 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:17,987 INFO L134 CoverageAnalysis]: Checked inductivity of 72 backedges. 28 proven. 26 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2023-12-02 20:01:17,988 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:17,988 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [774167843] [2023-12-02 20:01:17,988 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [774167843] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:17,988 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1467371156] [2023-12-02 20:01:17,988 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2023-12-02 20:01:17,988 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:17,988 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:17,989 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:18,002 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2023-12-02 20:01:18,085 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2023-12-02 20:01:18,085 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2023-12-02 20:01:18,087 INFO L262 TraceCheckSpWp]: Trace formula consists of 261 conjuncts, 10 conjunts are in the unsatisfiable core [2023-12-02 20:01:18,090 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:18,210 INFO L134 CoverageAnalysis]: Checked inductivity of 72 backedges. 60 proven. 0 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2023-12-02 20:01:18,211 INFO L323 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2023-12-02 20:01:18,211 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1467371156] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:18,211 INFO L185 FreeRefinementEngine]: Found 1 perfect and 1 imperfect interpolant sequences. [2023-12-02 20:01:18,211 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [16] total 19 [2023-12-02 20:01:18,211 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [357108145] [2023-12-02 20:01:18,211 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:18,212 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2023-12-02 20:01:18,212 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:18,212 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2023-12-02 20:01:18,213 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=48, Invalid=294, Unknown=0, NotChecked=0, Total=342 [2023-12-02 20:01:18,213 INFO L87 Difference]: Start difference. First operand 855 states and 962 transitions. Second operand has 5 states, 5 states have (on average 12.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (11), 3 states have call predecessors, (11), 3 states have call successors, (11) [2023-12-02 20:01:18,458 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:18,459 INFO L93 Difference]: Finished difference Result 1863 states and 2136 transitions. [2023-12-02 20:01:18,459 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 7 states. [2023-12-02 20:01:18,459 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 12.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (11), 3 states have call predecessors, (11), 3 states have call successors, (11) Word has length 91 [2023-12-02 20:01:18,460 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:18,466 INFO L225 Difference]: With dead ends: 1863 [2023-12-02 20:01:18,466 INFO L226 Difference]: Without dead ends: 1019 [2023-12-02 20:01:18,469 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 111 GetRequests, 92 SyntacticMatches, 0 SemanticMatches, 19 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 93 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=60, Invalid=360, Unknown=0, NotChecked=0, Total=420 [2023-12-02 20:01:18,469 INFO L413 NwaCegarLoop]: 83 mSDtfsCounter, 51 mSDsluCounter, 173 mSDsCounter, 0 mSdLazyCounter, 141 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 52 SdHoareTripleChecker+Valid, 256 SdHoareTripleChecker+Invalid, 145 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 141 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:18,470 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [52 Valid, 256 Invalid, 145 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 141 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 20:01:18,471 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1019 states. [2023-12-02 20:01:18,585 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1019 to 934. [2023-12-02 20:01:18,587 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 934 states, 648 states have (on average 1.146604938271605) internal successors, (743), 693 states have internal predecessors, (743), 124 states have call successors, (124), 117 states have call predecessors, (124), 161 states have return successors, (186), 147 states have call predecessors, (186), 124 states have call successors, (186) [2023-12-02 20:01:18,592 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 934 states to 934 states and 1053 transitions. [2023-12-02 20:01:18,592 INFO L78 Accepts]: Start accepts. Automaton has 934 states and 1053 transitions. Word has length 91 [2023-12-02 20:01:18,593 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:18,593 INFO L495 AbstractCegarLoop]: Abstraction has 934 states and 1053 transitions. [2023-12-02 20:01:18,593 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 12.0) internal successors, (60), 5 states have internal predecessors, (60), 3 states have call successors, (11), 3 states have call predecessors, (11), 3 states have return successors, (11), 3 states have call predecessors, (11), 3 states have call successors, (11) [2023-12-02 20:01:18,593 INFO L276 IsEmpty]: Start isEmpty. Operand 934 states and 1053 transitions. [2023-12-02 20:01:18,595 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 110 [2023-12-02 20:01:18,595 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:18,595 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:18,601 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Ended with exit code 0 [2023-12-02 20:01:18,801 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2023-12-02 20:01:18,801 INFO L420 AbstractCegarLoop]: === Iteration 14 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:18,802 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:18,802 INFO L85 PathProgramCache]: Analyzing trace with hash 525819482, now seen corresponding path program 1 times [2023-12-02 20:01:18,802 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:18,802 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [142895991] [2023-12-02 20:01:18,802 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:18,802 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:18,818 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:18,994 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 19 proven. 26 refuted. 0 times theorem prover too weak. 67 trivial. 0 not checked. [2023-12-02 20:01:18,994 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:18,994 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [142895991] [2023-12-02 20:01:18,995 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [142895991] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:18,995 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1360242064] [2023-12-02 20:01:18,995 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:18,995 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:18,995 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:18,996 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:18,999 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2023-12-02 20:01:19,098 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:19,100 INFO L262 TraceCheckSpWp]: Trace formula consists of 380 conjuncts, 15 conjunts are in the unsatisfiable core [2023-12-02 20:01:19,104 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:19,164 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 86 proven. 1 refuted. 0 times theorem prover too weak. 25 trivial. 0 not checked. [2023-12-02 20:01:19,164 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 20:01:19,267 INFO L134 CoverageAnalysis]: Checked inductivity of 112 backedges. 51 proven. 6 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2023-12-02 20:01:19,267 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1360242064] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 20:01:19,267 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [703756844] [2023-12-02 20:01:19,270 INFO L159 IcfgInterpreter]: Started Sifa with 47 locations of interest [2023-12-02 20:01:19,270 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 20:01:19,271 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 20:01:19,271 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 20:01:19,271 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 20:01:21,096 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 138 for LOIs [2023-12-02 20:01:21,168 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 28 for LOIs [2023-12-02 20:01:21,442 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 37 for LOIs [2023-12-02 20:01:21,555 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 40 for LOIs [2023-12-02 20:01:21,635 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 8 for LOIs [2023-12-02 20:01:21,637 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 28 for LOIs [2023-12-02 20:01:21,642 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 32 for LOIs [2023-12-02 20:01:21,647 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 20:01:24,480 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '17130#(and (<= ~methaneLevelCritical~0 1) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 0)) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (= |timeShift_isPumpRunning_#res#1| ~pumpRunning~0) (= |timeShift_getWaterLevel_#res#1| 0) (or (and (= |old(~pumpRunning~0)| 0) (exists ((|v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_31| Int) (|v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_21| Int)) (and (or (and (<= 0 (+ |v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_21| 2147483648)) (<= |v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_21| 2147483647)) (not (= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_31| 0))) (<= 0 (+ |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_31| 2147483648)) (<= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_31| 2147483647))) (= |old(~waterLevel~0)| 0) (not (= 0 ~systemActive~0))) (and (<= 0 |timeShift_isMethaneLevelCritical_#res#1|) (<= 0 |timeShift_isMethaneAlarm_#res#1|) (<= |timeShift_isMethaneAlarm_#res#1| 1) (<= |timeShift_isMethaneLevelCritical_#res#1| 1))) (<= 0 ~methaneLevelCritical~0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~9#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1|) (= ~waterLevel~0 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)))' at error location [2023-12-02 20:01:24,480 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 20:01:24,480 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 20:01:24,480 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 5, 5] total 10 [2023-12-02 20:01:24,480 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [837074107] [2023-12-02 20:01:24,480 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 20:01:24,481 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 10 states [2023-12-02 20:01:24,481 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:24,482 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 10 interpolants. [2023-12-02 20:01:24,483 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=200, Invalid=2152, Unknown=0, NotChecked=0, Total=2352 [2023-12-02 20:01:24,483 INFO L87 Difference]: Start difference. First operand 934 states and 1053 transitions. Second operand has 10 states, 9 states have (on average 9.333333333333334) internal successors, (84), 9 states have internal predecessors, (84), 4 states have call successors, (21), 4 states have call predecessors, (21), 4 states have return successors, (22), 4 states have call predecessors, (22), 4 states have call successors, (22) [2023-12-02 20:01:24,936 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:24,936 INFO L93 Difference]: Finished difference Result 1821 states and 2075 transitions. [2023-12-02 20:01:24,936 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 10 states. [2023-12-02 20:01:24,937 INFO L78 Accepts]: Start accepts. Automaton has has 10 states, 9 states have (on average 9.333333333333334) internal successors, (84), 9 states have internal predecessors, (84), 4 states have call successors, (21), 4 states have call predecessors, (21), 4 states have return successors, (22), 4 states have call predecessors, (22), 4 states have call successors, (22) Word has length 109 [2023-12-02 20:01:24,937 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:24,943 INFO L225 Difference]: With dead ends: 1821 [2023-12-02 20:01:24,943 INFO L226 Difference]: Without dead ends: 1364 [2023-12-02 20:01:24,945 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 342 GetRequests, 289 SyntacticMatches, 0 SemanticMatches, 53 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 894 ImplicationChecksByTransitivity, 3.0s TimeCoverageRelationStatistics Valid=242, Invalid=2728, Unknown=0, NotChecked=0, Total=2970 [2023-12-02 20:01:24,946 INFO L413 NwaCegarLoop]: 18 mSDtfsCounter, 138 mSDsluCounter, 72 mSDsCounter, 0 mSdLazyCounter, 524 mSolverCounterSat, 74 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 90 SdHoareTripleChecker+Invalid, 598 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 74 IncrementalHoareTripleChecker+Valid, 524 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:24,946 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 90 Invalid, 598 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [74 Valid, 524 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2023-12-02 20:01:24,948 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 1364 states. [2023-12-02 20:01:25,035 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 1364 to 906. [2023-12-02 20:01:25,037 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 906 states, 621 states have (on average 1.1368760064412238) internal successors, (706), 672 states have internal predecessors, (706), 123 states have call successors, (123), 121 states have call predecessors, (123), 161 states have return successors, (179), 149 states have call predecessors, (179), 123 states have call successors, (179) [2023-12-02 20:01:25,040 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 906 states to 906 states and 1008 transitions. [2023-12-02 20:01:25,041 INFO L78 Accepts]: Start accepts. Automaton has 906 states and 1008 transitions. Word has length 109 [2023-12-02 20:01:25,041 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:25,041 INFO L495 AbstractCegarLoop]: Abstraction has 906 states and 1008 transitions. [2023-12-02 20:01:25,041 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 10 states, 9 states have (on average 9.333333333333334) internal successors, (84), 9 states have internal predecessors, (84), 4 states have call successors, (21), 4 states have call predecessors, (21), 4 states have return successors, (22), 4 states have call predecessors, (22), 4 states have call successors, (22) [2023-12-02 20:01:25,041 INFO L276 IsEmpty]: Start isEmpty. Operand 906 states and 1008 transitions. [2023-12-02 20:01:25,042 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 113 [2023-12-02 20:01:25,042 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:25,042 INFO L195 NwaCegarLoop]: trace histogram [4, 4, 4, 4, 4, 4, 4, 4, 4, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:25,047 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2023-12-02 20:01:25,243 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable13 [2023-12-02 20:01:25,243 INFO L420 AbstractCegarLoop]: === Iteration 15 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:25,244 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:25,244 INFO L85 PathProgramCache]: Analyzing trace with hash 1993815493, now seen corresponding path program 2 times [2023-12-02 20:01:25,244 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:25,244 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1203971518] [2023-12-02 20:01:25,244 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:25,244 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:25,262 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:26,079 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 42 proven. 55 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2023-12-02 20:01:26,079 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:26,079 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1203971518] [2023-12-02 20:01:26,079 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1203971518] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:26,079 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1261330470] [2023-12-02 20:01:26,079 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2023-12-02 20:01:26,079 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:26,080 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:26,082 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:26,083 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2023-12-02 20:01:26,170 INFO L228 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2023-12-02 20:01:26,170 INFO L229 tOrderPrioritization]: Conjunction of SSA is unsat [2023-12-02 20:01:26,172 INFO L262 TraceCheckSpWp]: Trace formula consists of 253 conjuncts, 26 conjunts are in the unsatisfiable core [2023-12-02 20:01:26,176 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:26,389 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 67 proven. 7 refuted. 0 times theorem prover too weak. 41 trivial. 0 not checked. [2023-12-02 20:01:26,389 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 20:01:26,736 INFO L134 CoverageAnalysis]: Checked inductivity of 115 backedges. 53 proven. 7 refuted. 0 times theorem prover too weak. 55 trivial. 0 not checked. [2023-12-02 20:01:26,736 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1261330470] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 20:01:26,737 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1693154964] [2023-12-02 20:01:26,740 INFO L159 IcfgInterpreter]: Started Sifa with 47 locations of interest [2023-12-02 20:01:26,740 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 20:01:26,740 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 20:01:26,741 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 20:01:26,741 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 20:01:28,367 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 138 for LOIs [2023-12-02 20:01:28,445 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 28 for LOIs [2023-12-02 20:01:28,649 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__lowWaterSensor with input of size 37 for LOIs [2023-12-02 20:01:28,733 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 40 for LOIs [2023-12-02 20:01:28,787 INFO L197 IcfgInterpreter]: Interpreting procedure changeMethaneLevel with input of size 8 for LOIs [2023-12-02 20:01:28,790 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 28 for LOIs [2023-12-02 20:01:28,794 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 32 for LOIs [2023-12-02 20:01:28,799 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 20:01:32,333 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '21418#(and (<= ~methaneLevelCritical~0 1) (not (= |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1| 0)) (or (and (<= 0 |timeShift_isMethaneLevelCritical_#res#1|) (<= 0 |timeShift_isMethaneAlarm_#res#1|) (<= |timeShift_isMethaneAlarm_#res#1| 1) (<= |timeShift_isMethaneLevelCritical_#res#1| 1)) (and (exists ((|v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_40| Int) (|v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_28| Int)) (and (<= 0 (+ |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_40| 2147483648)) (<= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_40| 2147483647) (or (not (= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_40| 0)) (and (<= |v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_28| 2147483647) (<= 0 (+ |v_ULTIMATE.start_test_~tmp___1~0#1_BEFORE_CALL_28| 2147483648)))))) (= |old(~pumpRunning~0)| 0) (= |old(~waterLevel~0)| 0) (not (= 0 ~systemActive~0)))) (<= |timeShift_isPumpRunning_#res#1| 2147483647) (= |timeShift_isPumpRunning_#res#1| ~pumpRunning~0) (= |timeShift_getWaterLevel_#res#1| 0) (<= 0 ~methaneLevelCritical~0) (= |timeShift___utac_acc__Specification4_spec__1_~tmp~9#1| 0) (= |timeShift_isPumpRunning_#res#1| |timeShift___utac_acc__Specification4_spec__1_~tmp___0~3#1|) (= ~waterLevel~0 0) (<= 0 (+ |timeShift_isPumpRunning_#res#1| 2147483648)))' at error location [2023-12-02 20:01:32,334 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 20:01:32,334 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 20:01:32,334 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [20, 8, 9] total 32 [2023-12-02 20:01:32,334 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1615178182] [2023-12-02 20:01:32,334 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 20:01:32,335 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 32 states [2023-12-02 20:01:32,335 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:32,336 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2023-12-02 20:01:32,337 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=440, Invalid=4530, Unknown=0, NotChecked=0, Total=4970 [2023-12-02 20:01:32,337 INFO L87 Difference]: Start difference. First operand 906 states and 1008 transitions. Second operand has 32 states, 30 states have (on average 4.933333333333334) internal successors, (148), 30 states have internal predecessors, (148), 13 states have call successors, (27), 7 states have call predecessors, (27), 11 states have return successors, (31), 14 states have call predecessors, (31), 13 states have call successors, (31) [2023-12-02 20:01:33,132 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:33,132 INFO L93 Difference]: Finished difference Result 1086 states and 1216 transitions. [2023-12-02 20:01:33,133 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2023-12-02 20:01:33,133 INFO L78 Accepts]: Start accepts. Automaton has has 32 states, 30 states have (on average 4.933333333333334) internal successors, (148), 30 states have internal predecessors, (148), 13 states have call successors, (27), 7 states have call predecessors, (27), 11 states have return successors, (31), 14 states have call predecessors, (31), 13 states have call successors, (31) Word has length 112 [2023-12-02 20:01:33,133 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:33,133 INFO L225 Difference]: With dead ends: 1086 [2023-12-02 20:01:33,133 INFO L226 Difference]: Without dead ends: 0 [2023-12-02 20:01:33,138 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 379 GetRequests, 294 SyntacticMatches, 0 SemanticMatches, 85 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2841 ImplicationChecksByTransitivity, 4.3s TimeCoverageRelationStatistics Valid=736, Invalid=6746, Unknown=0, NotChecked=0, Total=7482 [2023-12-02 20:01:33,138 INFO L413 NwaCegarLoop]: 35 mSDtfsCounter, 302 mSDsluCounter, 234 mSDsCounter, 0 mSdLazyCounter, 729 mSolverCounterSat, 196 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 305 SdHoareTripleChecker+Valid, 269 SdHoareTripleChecker+Invalid, 925 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 196 IncrementalHoareTripleChecker+Valid, 729 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:33,139 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [305 Valid, 269 Invalid, 925 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [196 Valid, 729 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2023-12-02 20:01:33,139 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-12-02 20:01:33,139 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-12-02 20:01:33,139 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:01:33,139 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-12-02 20:01:33,140 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 112 [2023-12-02 20:01:33,140 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:33,140 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-12-02 20:01:33,140 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 32 states, 30 states have (on average 4.933333333333334) internal successors, (148), 30 states have internal predecessors, (148), 13 states have call successors, (27), 7 states have call predecessors, (27), 11 states have return successors, (31), 14 states have call predecessors, (31), 13 states have call successors, (31) [2023-12-02 20:01:33,140 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-12-02 20:01:33,140 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-12-02 20:01:33,142 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-12-02 20:01:33,147 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Forceful destruction successful, exit code 0 [2023-12-02 20:01:33,343 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14,8 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:33,345 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-12-02 20:01:36,943 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 615 622) no Hoare annotation was computed. [2023-12-02 20:01:36,943 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 615 622) the Hoare annotation is: (or (not (= ~waterLevel~0 1)) (not (= |old(~pumpRunning~0)| 1)) (= 0 ~systemActive~0) (= ~pumpRunning~0 1)) [2023-12-02 20:01:36,944 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 522 528) no Hoare annotation was computed. [2023-12-02 20:01:36,944 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 522 528) the Hoare annotation is: true [2023-12-02 20:01:36,944 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 792 803) the Hoare annotation is: (let ((.cse1 (not (= 2 ~waterLevel~0))) (.cse0 (not (= ~pumpRunning~0 0))) (.cse2 (= |old(~methaneLevelCritical~0)| ~methaneLevelCritical~0)) (.cse3 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse1 .cse2 (not (= ~pumpRunning~0 1)) .cse3) (or (not (= ~waterLevel~0 1)) .cse0 .cse2 .cse3))) [2023-12-02 20:01:36,944 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 792 803) no Hoare annotation was computed. [2023-12-02 20:01:36,944 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 896 925) no Hoare annotation was computed. [2023-12-02 20:01:36,944 INFO L899 garLoopResultBuilder]: For program point L921(lines 896 925) no Hoare annotation was computed. [2023-12-02 20:01:36,944 INFO L899 garLoopResultBuilder]: For program point L917(line 917) no Hoare annotation was computed. [2023-12-02 20:01:36,944 INFO L899 garLoopResultBuilder]: For program point L910(lines 910 914) no Hoare annotation was computed. [2023-12-02 20:01:36,944 INFO L902 garLoopResultBuilder]: At program point L910-1(lines 910 914) the Hoare annotation is: true [2023-12-02 20:01:36,944 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 896 925) the Hoare annotation is: true [2023-12-02 20:01:36,945 INFO L902 garLoopResultBuilder]: At program point L906-2(lines 906 920) the Hoare annotation is: true [2023-12-02 20:01:36,945 INFO L902 garLoopResultBuilder]: At program point L902(line 902) the Hoare annotation is: true [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L902-1(line 902) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L895 garLoopResultBuilder]: At program point L601(line 601) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= |old(~waterLevel~0)| 2))) (.cse3 (= 0 ~systemActive~0))) (and (or .cse0 (and .cse1 (= 2 ~waterLevel~0)) .cse2 .cse3) (or .cse0 (not (= |old(~waterLevel~0)| 1)) (and .cse1 (= ~waterLevel~0 1)) .cse3) (or (not (= |old(~pumpRunning~0)| 1)) .cse2 .cse3))) [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L601-1(lines 582 606) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L502-1(lines 501 520) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L590(lines 590 598) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L586(lines 586 603) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L760(line 760) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 498 521) the Hoare annotation is: (let ((.cse2 (= 2 ~waterLevel~0)) (.cse0 (not (= |old(~waterLevel~0)| 2))) (.cse3 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (= ~pumpRunning~0 0)) (.cse1 (= 0 ~systemActive~0))) (and (or (not (= |old(~pumpRunning~0)| 1)) .cse0 .cse1 (and .cse2 (= ~pumpRunning~0 1))) (or .cse3 (and .cse4 .cse2) .cse0 .cse1) (or .cse3 (not (= |old(~waterLevel~0)| 1)) (and .cse4 (= ~waterLevel~0 1)) .cse1))) [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L509-1(lines 509 515) no Hoare annotation was computed. [2023-12-02 20:01:36,945 INFO L895 garLoopResultBuilder]: At program point L596(line 596) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 1))) (.cse1 (not (= |old(~waterLevel~0)| 2))) (.cse3 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (= 0 ~systemActive~0))) (and (or (= ~methaneLevelCritical~0 0) .cse0 .cse1 .cse2) (or .cse3 .cse1 .cse2) (or .cse0 (and (= |timeShift_processEnvironment_~tmp~6#1| 0) (= ~waterLevel~0 1) (= ~pumpRunning~0 1)) .cse1 .cse2) (or .cse3 (not (= |old(~waterLevel~0)| 1)) .cse2))) [2023-12-02 20:01:36,945 INFO L899 garLoopResultBuilder]: For program point L881(lines 881 887) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L895 garLoopResultBuilder]: At program point L592(line 592) the Hoare annotation is: (let ((.cse3 (not (= |old(~pumpRunning~0)| 1))) (.cse1 (not (= |old(~waterLevel~0)| 2))) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 .cse2) (or (not (= ~methaneLevelCritical~0 0)) .cse3 .cse1 .cse2) (or (and (= |timeShift_processEnvironment_~tmp~6#1| ~methaneLevelCritical~0) (= ~waterLevel~0 1) (= ~pumpRunning~0 1)) .cse3 .cse1 .cse2) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse2))) [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point L877(lines 877 890) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point L877-1(lines 869 893) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 498 521) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 760) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L895 garLoopResultBuilder]: At program point L473(lines 430 475) the Hoare annotation is: (let ((.cse1 (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1))) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= ~waterLevel~0 1)) (.cse6 (= 2 ~waterLevel~0)) (.cse8 (= ~methaneLevelCritical~0 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse5 (not (= 0 ~systemActive~0))) (.cse7 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse1 .cse2 .cse3 .cse5 .cse7) (and .cse0 .cse8 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse8 .cse2 .cse3 .cse5 .cse7))) [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point L440(lines 440 446) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point L440-1(lines 440 446) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point L977(lines 977 984) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L899 garLoopResultBuilder]: For program point L977-2(lines 977 984) no Hoare annotation was computed. [2023-12-02 20:01:36,946 INFO L895 garLoopResultBuilder]: At program point L466-2(lines 460 471) the Hoare annotation is: (let ((.cse1 (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1))) (.cse4 (= ~waterLevel~0 1)) (.cse7 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse6 (= 2 ~waterLevel~0)) (.cse8 (= ~methaneLevelCritical~0 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse5 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse0 .cse6 .cse1 .cse2 .cse3 .cse5) (and .cse6 .cse1 .cse2 .cse3 .cse5 .cse7) (and .cse0 .cse8 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse8 .cse2 .cse3 .cse5 .cse7) (and .cse0 .cse6 .cse8 .cse2 .cse3 .cse5))) [2023-12-02 20:01:36,947 INFO L899 garLoopResultBuilder]: For program point L450(lines 450 456) no Hoare annotation was computed. [2023-12-02 20:01:36,947 INFO L899 garLoopResultBuilder]: For program point L450-1(lines 450 456) no Hoare annotation was computed. [2023-12-02 20:01:36,947 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-12-02 20:01:36,947 INFO L899 garLoopResultBuilder]: For program point L479(lines 420 483) no Hoare annotation was computed. [2023-12-02 20:01:36,947 INFO L895 garLoopResultBuilder]: At program point L442(line 442) the Hoare annotation is: (let ((.cse1 (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1))) (.cse0 (= ~pumpRunning~0 0)) (.cse4 (= ~waterLevel~0 1)) (.cse6 (= 2 ~waterLevel~0)) (.cse8 (= ~methaneLevelCritical~0 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse5 (not (= 0 ~systemActive~0))) (.cse7 (= ~pumpRunning~0 1))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse1 .cse2 .cse3 .cse5 .cse7) (and .cse0 .cse8 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse8 .cse2 .cse3 .cse5 .cse7))) [2023-12-02 20:01:36,947 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-12-02 20:01:36,947 INFO L895 garLoopResultBuilder]: At program point L476(lines 429 477) the Hoare annotation is: false [2023-12-02 20:01:36,947 INFO L899 garLoopResultBuilder]: For program point L431(lines 430 475) no Hoare annotation was computed. [2023-12-02 20:01:36,947 INFO L895 garLoopResultBuilder]: At program point L452(line 452) the Hoare annotation is: (let ((.cse1 (or (not (= |old(~methaneLevelCritical~0)| 0)) (= ~methaneLevelCritical~0 1))) (.cse4 (= ~waterLevel~0 1)) (.cse7 (= ~pumpRunning~0 1)) (.cse0 (= ~pumpRunning~0 0)) (.cse6 (= 2 ~waterLevel~0)) (.cse8 (= ~methaneLevelCritical~0 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| ~systemActive~0)) (.cse3 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse5 (not (= 0 ~systemActive~0)))) (or (and .cse0 .cse1 .cse2 .cse3 .cse4 .cse5) (and .cse0 .cse6 .cse1 .cse2 .cse3 .cse5) (and .cse6 .cse1 .cse2 .cse3 .cse5 .cse7) (and .cse0 .cse8 .cse2 .cse3 .cse4 .cse5) (and .cse6 .cse8 .cse2 .cse3 .cse5 .cse7) (and .cse0 .cse6 .cse8 .cse2 .cse3 .cse5))) [2023-12-02 20:01:36,948 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 530 554) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2))) [2023-12-02 20:01:36,948 INFO L895 garLoopResultBuilder]: At program point L544(line 544) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or (not (= ~waterLevel~0 1)) .cse0 (and (= ~pumpRunning~0 0) (= |processEnvironment__wrappee__highWaterSensor_~tmp~4#1| 0)) .cse1) (or .cse0 (not (= 2 ~waterLevel~0)) .cse1))) [2023-12-02 20:01:36,948 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 530 554) no Hoare annotation was computed. [2023-12-02 20:01:36,948 INFO L899 garLoopResultBuilder]: For program point L538(lines 538 546) no Hoare annotation was computed. [2023-12-02 20:01:36,948 INFO L899 garLoopResultBuilder]: For program point L534(lines 534 551) no Hoare annotation was computed. [2023-12-02 20:01:36,948 INFO L895 garLoopResultBuilder]: At program point L549(line 549) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 (not (= 2 ~waterLevel~0)) .cse1) (or (not (= ~waterLevel~0 1)) .cse0 .cse1))) [2023-12-02 20:01:36,948 INFO L899 garLoopResultBuilder]: For program point L549-1(lines 530 554) no Hoare annotation was computed. [2023-12-02 20:01:36,948 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 780 791) no Hoare annotation was computed. [2023-12-02 20:01:36,948 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 780 791) the Hoare annotation is: (let ((.cse0 (= 0 ~systemActive~0))) (and (or (= 2 ~waterLevel~0) (not (= ~pumpRunning~0 1)) (not (= |old(~waterLevel~0)| 2)) .cse0) (or (not (= ~pumpRunning~0 0)) (not (= |old(~waterLevel~0)| 1)) .cse0 (= ~waterLevel~0 1)))) [2023-12-02 20:01:36,949 INFO L895 garLoopResultBuilder]: At program point L570(line 570) the Hoare annotation is: (let ((.cse0 (not (= ~waterLevel~0 1))) (.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 (not (= ~methaneLevelCritical~0 0)) (not (= |old(~pumpRunning~0)| 1)) .cse1) (or .cse2 (not (= 2 ~waterLevel~0)) .cse1) (or .cse0 .cse2 .cse1))) [2023-12-02 20:01:36,949 INFO L895 garLoopResultBuilder]: At program point L566(line 566) the Hoare annotation is: (let ((.cse0 (not (= ~waterLevel~0 1))) (.cse2 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= 0 ~systemActive~0))) (and (or .cse0 (and (<= 1 |processEnvironment__wrappee__lowWaterSensor_~tmp~5#1|) (= ~pumpRunning~0 1)) (not (= ~methaneLevelCritical~0 0)) (not (= |old(~pumpRunning~0)| 1)) .cse1) (or .cse2 (not (= 2 ~waterLevel~0)) .cse1) (or .cse0 .cse2 .cse1))) [2023-12-02 20:01:36,949 INFO L899 garLoopResultBuilder]: For program point L564(lines 564 572) no Hoare annotation was computed. [2023-12-02 20:01:36,949 INFO L899 garLoopResultBuilder]: For program point L560(lines 560 577) no Hoare annotation was computed. [2023-12-02 20:01:36,949 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 556 580) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse3 (not (= ~waterLevel~0 1))) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or .cse3 .cse0 .cse1 .cse2) (or .cse3 (not (= ~methaneLevelCritical~0 0)) (not (= |old(~pumpRunning~0)| 1)) .cse2 (= ~pumpRunning~0 1)))) [2023-12-02 20:01:36,949 INFO L895 garLoopResultBuilder]: At program point L575(line 575) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse3 (not (= ~waterLevel~0 1))) (.cse2 (= 0 ~systemActive~0))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or .cse3 .cse0 .cse1 .cse2) (or .cse3 (not (= ~methaneLevelCritical~0 0)) (not (= |old(~pumpRunning~0)| 1)) .cse2))) [2023-12-02 20:01:36,949 INFO L899 garLoopResultBuilder]: For program point L575-1(lines 556 580) no Hoare annotation was computed. [2023-12-02 20:01:36,949 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__lowWaterSensorEXIT(lines 556 580) no Hoare annotation was computed. [2023-12-02 20:01:36,951 INFO L445 BasicCegarLoop]: Path program histogram: [2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:36,953 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-12-02 20:01:36,965 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 02.12 08:01:36 BoogieIcfgContainer [2023-12-02 20:01:36,965 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-12-02 20:01:36,966 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-12-02 20:01:36,966 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-12-02 20:01:36,966 INFO L274 PluginConnector]: Witness Printer initialized [2023-12-02 20:01:36,966 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 08:00:54" (3/4) ... [2023-12-02 20:01:36,968 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-12-02 20:01:36,970 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-12-02 20:01:36,970 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-12-02 20:01:36,970 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-12-02 20:01:36,970 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-12-02 20:01:36,970 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-12-02 20:01:36,971 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 20:01:36,971 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-12-02 20:01:36,971 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__lowWaterSensor [2023-12-02 20:01:36,978 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 47 nodes and edges [2023-12-02 20:01:36,979 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2023-12-02 20:01:36,979 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-12-02 20:01:36,980 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-12-02 20:01:36,981 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-12-02 20:01:37,002 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((pumpRunning == 0) && (!((\old(methaneLevelCritical) == 0)) || (methaneLevelCritical == 1))) && (tmp == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && !((0 == systemActive))) || ((((((2 == waterLevel) && (!((\old(methaneLevelCritical) == 0)) || (methaneLevelCritical == 1))) && (tmp == systemActive)) && (splverifierCounter == 0)) && !((0 == systemActive))) && (pumpRunning == 1))) || ((((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (tmp == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && !((0 == systemActive)))) || ((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (tmp == systemActive)) && (splverifierCounter == 0)) && !((0 == systemActive))) && (pumpRunning == 1))) [2023-12-02 20:01:37,003 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!((\old(pumpRunning) == 1)) || !((\old(waterLevel) == 2))) || (0 == systemActive)) || ((2 == waterLevel) && (pumpRunning == 1))) && (((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (2 == waterLevel))) || !((\old(waterLevel) == 2))) || (0 == systemActive))) && (((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) [2023-12-02 20:01:37,035 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((pumpRunning == 0) && (!((\old(methaneLevelCritical) == 0)) || (methaneLevelCritical == 1))) && (tmp == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && !((0 == systemActive))) || ((((((2 == waterLevel) && (!((\old(methaneLevelCritical) == 0)) || (methaneLevelCritical == 1))) && (tmp == systemActive)) && (splverifierCounter == 0)) && !((0 == systemActive))) && (pumpRunning == 1))) || ((((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (tmp == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && !((0 == systemActive)))) || ((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (tmp == systemActive)) && (splverifierCounter == 0)) && !((0 == systemActive))) && (pumpRunning == 1))) [2023-12-02 20:01:37,037 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((!((\old(pumpRunning) == 1)) || !((\old(waterLevel) == 2))) || (0 == systemActive)) || ((2 == waterLevel) && (pumpRunning == 1))) && (((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (2 == waterLevel))) || !((\old(waterLevel) == 2))) || (0 == systemActive))) && (((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) [2023-12-02 20:01:37,075 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/witness.graphml [2023-12-02 20:01:37,076 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/witness.yml [2023-12-02 20:01:37,076 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-12-02 20:01:37,077 INFO L158 Benchmark]: Toolchain (without parser) took 43711.89ms. Allocated memory was 161.5MB in the beginning and 629.1MB in the end (delta: 467.7MB). Free memory was 125.8MB in the beginning and 502.4MB in the end (delta: -376.6MB). Peak memory consumption was 90.5MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,077 INFO L158 Benchmark]: CDTParser took 0.20ms. Allocated memory is still 123.7MB. Free memory was 93.8MB in the beginning and 93.7MB in the end (delta: 125.9kB). There was no memory consumed. Max. memory is 16.1GB. [2023-12-02 20:01:37,078 INFO L158 Benchmark]: CACSL2BoogieTranslator took 440.34ms. Allocated memory is still 161.5MB. Free memory was 125.8MB in the beginning and 124.7MB in the end (delta: 1.1MB). Peak memory consumption was 14.7MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,078 INFO L158 Benchmark]: Boogie Procedure Inliner took 45.86ms. Allocated memory is still 161.5MB. Free memory was 124.7MB in the beginning and 122.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,078 INFO L158 Benchmark]: Boogie Preprocessor took 28.27ms. Allocated memory is still 161.5MB. Free memory was 122.6MB in the beginning and 120.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,078 INFO L158 Benchmark]: RCFGBuilder took 497.02ms. Allocated memory is still 161.5MB. Free memory was 120.5MB in the beginning and 91.9MB in the end (delta: 28.6MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,079 INFO L158 Benchmark]: TraceAbstraction took 42582.88ms. Allocated memory was 161.5MB in the beginning and 629.1MB in the end (delta: 467.7MB). Free memory was 91.1MB in the beginning and 510.8MB in the end (delta: -419.6MB). Peak memory consumption was 347.4MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,079 INFO L158 Benchmark]: Witness Printer took 110.46ms. Allocated memory is still 629.1MB. Free memory was 510.8MB in the beginning and 502.4MB in the end (delta: 8.4MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2023-12-02 20:01:37,081 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.20ms. Allocated memory is still 123.7MB. Free memory was 93.8MB in the beginning and 93.7MB in the end (delta: 125.9kB). There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 440.34ms. Allocated memory is still 161.5MB. Free memory was 125.8MB in the beginning and 124.7MB in the end (delta: 1.1MB). Peak memory consumption was 14.7MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 45.86ms. Allocated memory is still 161.5MB. Free memory was 124.7MB in the beginning and 122.6MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 28.27ms. Allocated memory is still 161.5MB. Free memory was 122.6MB in the beginning and 120.5MB in the end (delta: 2.1MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 497.02ms. Allocated memory is still 161.5MB. Free memory was 120.5MB in the beginning and 91.9MB in the end (delta: 28.6MB). Peak memory consumption was 29.4MB. Max. memory is 16.1GB. * TraceAbstraction took 42582.88ms. Allocated memory was 161.5MB in the beginning and 629.1MB in the end (delta: 467.7MB). Free memory was 91.1MB in the beginning and 510.8MB in the end (delta: -419.6MB). Peak memory consumption was 347.4MB. Max. memory is 16.1GB. * Witness Printer took 110.46ms. Allocated memory is still 629.1MB. Free memory was 510.8MB in the beginning and 502.4MB in the end (delta: 8.4MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [49] - GenericResultAtLocation [Line: 415]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [415] - GenericResultAtLocation [Line: 484]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [484] - GenericResultAtLocation [Line: 717]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [717] - GenericResultAtLocation [Line: 755]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [755] - GenericResultAtLocation [Line: 764]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [764] - GenericResultAtLocation [Line: 868]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification4_spec.i","") [868] - GenericResultAtLocation [Line: 894]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [894] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 760]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 62 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 42.5s, OverallIterations: 15, TraceHistogramMax: 4, PathProgramHistogramMax: 2, EmptinessCheckTime: 0.0s, AutomataDifference: 11.2s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 3.6s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2839 SdHoareTripleChecker+Valid, 4.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2809 mSDsluCounter, 2889 SdHoareTripleChecker+Invalid, 3.7s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2110 mSDsCounter, 1617 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 5434 IncrementalHoareTripleChecker+Invalid, 7051 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1617 mSolverCounterUnsat, 779 mSDtfsCounter, 5434 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 1520 GetRequests, 1107 SyntacticMatches, 6 SemanticMatches, 407 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 12883 ImplicationChecksByTransitivity, 17.2s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=934occurred in iteration=13, InterpolantAutomatonStates: 220, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.7s AutomataMinimizationTime, 15 MinimizatonAttempts, 1118 StatesRemovedByMinimization, 10 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 24 LocationsWithAnnotation, 1295 PreInvPairs, 1336 NumberOfFragments, 1060 HoareAnnotationTreeSize, 1295 FomulaSimplifications, 25383 FormulaSimplificationTreeSizeReduction, 0.5s HoareSimplificationTime, 24 FomulaSimplificationsInter, 19225 FormulaSimplificationTreeSizeReductionInter, 3.0s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.4s SatisfiabilityAnalysisTime, 5.1s InterpolantComputationTime, 1289 NumberOfCodeBlocks, 1209 NumberOfCodeBlocksAsserted, 24 NumberOfCheckSat, 1603 ConstructedInterpolants, 0 QuantifiedInterpolants, 4573 SizeOfPredicates, 37 NumberOfNonLiveVariables, 1874 ConjunctsInSsa, 99 ConjunctsInUnsatCore, 26 InterpolantComputations, 11 PerfectInterpolantSequences, 856/1044 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: OVERALL_TIME: 2.7s, ICFG_INTERPRETER_ENTERED_PROCEDURES: 5, DAG_INTERPRETER_EARLY_EXIT_QUERIES_NONTRIVIAL: 48, DAG_INTERPRETER_EARLY_EXITS: 1, TOOLS_POST_APPLICATIONS: 61, TOOLS_POST_TIME: 1.0s, TOOLS_POST_CALL_APPLICATIONS: 29, TOOLS_POST_CALL_TIME: 0.6s, TOOLS_POST_RETURN_APPLICATIONS: 24, TOOLS_POST_RETURN_TIME: 0.6s, TOOLS_QUANTIFIERELIM_APPLICATIONS: 114, TOOLS_QUANTIFIERELIM_TIME: 2.2s, TOOLS_QUANTIFIERELIM_MAX_TIME: 0.2s, FLUID_QUERY_TIME: 0.0s, FLUID_QUERIES: 141, FLUID_YES_ANSWERS: 0, DOMAIN_JOIN_APPLICATIONS: 26, DOMAIN_JOIN_TIME: 0.3s, DOMAIN_ALPHA_APPLICATIONS: 0, DOMAIN_ALPHA_TIME: 0.0s, DOMAIN_WIDEN_APPLICATIONS: 1, DOMAIN_WIDEN_TIME: 0.0s, DOMAIN_ISSUBSETEQ_APPLICATIONS: 2, DOMAIN_ISSUBSETEQ_TIME: 0.0s, DOMAIN_ISBOTTOM_APPLICATIONS: 48, DOMAIN_ISBOTTOM_TIME: 0.1s, LOOP_SUMMARIZER_APPLICATIONS: 1, LOOP_SUMMARIZER_CACHE_MISSES: 1, LOOP_SUMMARIZER_OVERALL_TIME: 1.6s, LOOP_SUMMARIZER_NEW_COMPUTATION_TIME: 1.6s, LOOP_SUMMARIZER_FIXPOINT_ITERATIONS: 2, CALL_SUMMARIZER_APPLICATIONS: 24, CALL_SUMMARIZER_CACHE_MISSES: 4, CALL_SUMMARIZER_OVERALL_TIME: 0.1s, CALL_SUMMARIZER_NEW_COMPUTATION_TIME: 0.1s, PROCEDURE_GRAPH_BUILDER_TIME: 0.0s, PATH_EXPR_TIME: 0.0s, REGEX_TO_DAG_TIME: 0.0s, DAG_COMPRESSION_TIME: 0.0s, DAG_COMPRESSION_PROCESSED_NODES: 467, DAG_COMPRESSION_RETAINED_NODES: 116, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 906]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 430]: Loop Invariant Derived loop invariant: (((((((((pumpRunning == 0) && (!((\old(methaneLevelCritical) == 0)) || (methaneLevelCritical == 1))) && (tmp == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && !((0 == systemActive))) || ((((((2 == waterLevel) && (!((\old(methaneLevelCritical) == 0)) || (methaneLevelCritical == 1))) && (tmp == systemActive)) && (splverifierCounter == 0)) && !((0 == systemActive))) && (pumpRunning == 1))) || ((((((pumpRunning == 0) && (methaneLevelCritical == 0)) && (tmp == systemActive)) && (splverifierCounter == 0)) && (waterLevel == 1)) && !((0 == systemActive)))) || ((((((2 == waterLevel) && (methaneLevelCritical == 0)) && (tmp == systemActive)) && (splverifierCounter == 0)) && !((0 == systemActive))) && (pumpRunning == 1))) - InvariantResult [Line: 429]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 498]: Loop Invariant Derived loop invariant: (((((!((\old(pumpRunning) == 1)) || !((\old(waterLevel) == 2))) || (0 == systemActive)) || ((2 == waterLevel) && (pumpRunning == 1))) && (((!((\old(pumpRunning) == 0)) || ((pumpRunning == 0) && (2 == waterLevel))) || !((\old(waterLevel) == 2))) || (0 == systemActive))) && (((!((\old(pumpRunning) == 0)) || !((\old(waterLevel) == 1))) || ((pumpRunning == 0) && (waterLevel == 1))) || (0 == systemActive))) RESULT: Ultimate proved your program to be correct! [2023-12-02 20:01:37,102 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_23cfa838-90d1-4f44-b75d-1e40bb9cbc3a/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Ended with exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE