./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 0e0057cc Calling Ultimate with: /usr/lib/jvm/java-1.11.0-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash b57a794fa6b429f14911ed2b6a28ecb30bf580e5cb37ae05e7120c2d485c2d18 --- Real Ultimate output --- This is Ultimate 0.2.4-dev-0e0057c [2023-12-02 13:52:39,456 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-12-02 13:52:39,521 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/config/svcomp-Reach-32bit-Taipan_Default.epf [2023-12-02 13:52:39,525 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-12-02 13:52:39,526 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-12-02 13:52:39,549 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-12-02 13:52:39,549 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-12-02 13:52:39,550 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-12-02 13:52:39,551 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-12-02 13:52:39,551 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-12-02 13:52:39,552 INFO L153 SettingsManager]: * User list type=DISABLED [2023-12-02 13:52:39,552 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2023-12-02 13:52:39,553 INFO L153 SettingsManager]: * Explicit value domain=true [2023-12-02 13:52:39,553 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2023-12-02 13:52:39,554 INFO L153 SettingsManager]: * Octagon Domain=false [2023-12-02 13:52:39,554 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2023-12-02 13:52:39,555 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2023-12-02 13:52:39,555 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2023-12-02 13:52:39,556 INFO L153 SettingsManager]: * Interval Domain=false [2023-12-02 13:52:39,556 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2023-12-02 13:52:39,557 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2023-12-02 13:52:39,558 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2023-12-02 13:52:39,558 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-12-02 13:52:39,559 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-12-02 13:52:39,559 INFO L153 SettingsManager]: * sizeof long=4 [2023-12-02 13:52:39,560 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-12-02 13:52:39,560 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-12-02 13:52:39,560 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-12-02 13:52:39,561 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-12-02 13:52:39,561 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-12-02 13:52:39,562 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-12-02 13:52:39,562 INFO L153 SettingsManager]: * sizeof long double=12 [2023-12-02 13:52:39,562 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-12-02 13:52:39,563 INFO L153 SettingsManager]: * Use constant arrays=true [2023-12-02 13:52:39,563 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-12-02 13:52:39,563 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2023-12-02 13:52:39,563 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-12-02 13:52:39,563 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-12-02 13:52:39,564 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-12-02 13:52:39,564 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-12-02 13:52:39,564 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2023-12-02 13:52:39,564 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2023-12-02 13:52:39,565 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-12-02 13:52:39,565 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2023-12-02 13:52:39,565 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-12-02 13:52:39,565 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2023-12-02 13:52:39,565 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-12-02 13:52:39,566 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> b57a794fa6b429f14911ed2b6a28ecb30bf580e5cb37ae05e7120c2d485c2d18 [2023-12-02 13:52:39,775 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-12-02 13:52:39,796 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-12-02 13:52:39,798 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-12-02 13:52:39,800 INFO L270 PluginConnector]: Initializing CDTParser... [2023-12-02 13:52:39,800 INFO L274 PluginConnector]: CDTParser initialized [2023-12-02 13:52:39,801 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/../../sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c [2023-12-02 13:52:42,541 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-12-02 13:52:42,740 INFO L384 CDTParser]: Found 1 translation units. [2023-12-02 13:52:42,741 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c [2023-12-02 13:52:42,757 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/data/23a9dcda7/d3dd72326be347c78d91dcd8160b622f/FLAGbf96e3b06 [2023-12-02 13:52:42,771 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/data/23a9dcda7/d3dd72326be347c78d91dcd8160b622f [2023-12-02 13:52:42,774 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-12-02 13:52:42,775 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-12-02 13:52:42,777 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-12-02 13:52:42,777 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-12-02 13:52:42,782 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-12-02 13:52:42,783 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.12 01:52:42" (1/1) ... [2023-12-02 13:52:42,784 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@7bbacf24 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:42, skipping insertion in model container [2023-12-02 13:52:42,784 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.12 01:52:42" (1/1) ... [2023-12-02 13:52:42,838 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-12-02 13:52:43,089 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c[18075,18088] [2023-12-02 13:52:43,098 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-12-02 13:52:43,110 INFO L202 MainTranslator]: Completed pre-run [2023-12-02 13:52:43,120 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] [2023-12-02 13:52:43,121 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [304] [2023-12-02 13:52:43,121 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [376] [2023-12-02 13:52:43,121 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [427] [2023-12-02 13:52:43,122 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [793] [2023-12-02 13:52:43,122 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [893] [2023-12-02 13:52:43,122 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [928] [2023-12-02 13:52:43,122 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [937] [2023-12-02 13:52:43,178 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/sv-benchmarks/c/product-lines/minepump_spec5_product60.cil.c[18075,18088] [2023-12-02 13:52:43,183 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-12-02 13:52:43,201 INFO L206 MainTranslator]: Completed translation [2023-12-02 13:52:43,201 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43 WrapperNode [2023-12-02 13:52:43,201 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-12-02 13:52:43,202 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-12-02 13:52:43,202 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-12-02 13:52:43,203 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-12-02 13:52:43,208 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,222 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,251 INFO L138 Inliner]: procedures = 60, calls = 106, calls flagged for inlining = 28, calls inlined = 25, statements flattened = 238 [2023-12-02 13:52:43,251 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-12-02 13:52:43,252 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-12-02 13:52:43,252 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-12-02 13:52:43,252 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-12-02 13:52:43,262 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,262 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,265 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,265 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,271 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,276 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,278 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,280 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,283 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-12-02 13:52:43,284 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-12-02 13:52:43,284 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-12-02 13:52:43,284 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-12-02 13:52:43,285 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (1/1) ... [2023-12-02 13:52:43,291 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-12-02 13:52:43,303 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 13:52:43,319 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-12-02 13:52:43,327 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-12-02 13:52:43,354 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-12-02 13:52:43,355 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-12-02 13:52:43,355 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-12-02 13:52:43,355 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-12-02 13:52:43,355 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-12-02 13:52:43,355 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-12-02 13:52:43,355 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-12-02 13:52:43,355 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 13:52:43,355 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 13:52:43,356 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-12-02 13:52:43,356 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-12-02 13:52:43,356 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2023-12-02 13:52:43,356 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2023-12-02 13:52:43,356 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-12-02 13:52:43,356 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-12-02 13:52:43,357 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-12-02 13:52:43,357 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-12-02 13:52:43,357 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-12-02 13:52:43,357 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-12-02 13:52:43,357 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-12-02 13:52:43,429 INFO L241 CfgBuilder]: Building ICFG [2023-12-02 13:52:43,431 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2023-12-02 13:52:43,681 INFO L282 CfgBuilder]: Performing block encoding [2023-12-02 13:52:43,808 INFO L304 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-12-02 13:52:43,808 INFO L309 CfgBuilder]: Removed 2 assume(true) statements. [2023-12-02 13:52:43,810 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 01:52:43 BoogieIcfgContainer [2023-12-02 13:52:43,810 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-12-02 13:52:43,812 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-12-02 13:52:43,812 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-12-02 13:52:43,815 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-12-02 13:52:43,815 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 02.12 01:52:42" (1/3) ... [2023-12-02 13:52:43,816 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2eb06b24 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.12 01:52:43, skipping insertion in model container [2023-12-02 13:52:43,816 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 01:52:43" (2/3) ... [2023-12-02 13:52:43,816 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@2eb06b24 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.12 01:52:43, skipping insertion in model container [2023-12-02 13:52:43,816 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 01:52:43" (3/3) ... [2023-12-02 13:52:43,817 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product60.cil.c [2023-12-02 13:52:43,832 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-12-02 13:52:43,832 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-12-02 13:52:43,872 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-12-02 13:52:43,878 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@642b6004, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2023-12-02 13:52:43,878 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-12-02 13:52:43,881 INFO L276 IsEmpty]: Start isEmpty. Operand has 66 states, 42 states have (on average 1.4523809523809523) internal successors, (61), 51 states have internal predecessors, (61), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) [2023-12-02 13:52:43,889 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2023-12-02 13:52:43,889 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:43,889 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:43,890 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:43,893 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:43,894 INFO L85 PathProgramCache]: Analyzing trace with hash 1309754951, now seen corresponding path program 1 times [2023-12-02 13:52:43,901 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:43,901 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2070535939] [2023-12-02 13:52:43,901 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:43,901 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:43,994 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:44,062 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:52:44,062 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:44,063 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2070535939] [2023-12-02 13:52:44,063 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2070535939] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:44,063 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:44,064 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-12-02 13:52:44,065 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1018246079] [2023-12-02 13:52:44,066 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:44,070 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-12-02 13:52:44,071 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:44,096 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-12-02 13:52:44,096 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-12-02 13:52:44,098 INFO L87 Difference]: Start difference. First operand has 66 states, 42 states have (on average 1.4523809523809523) internal successors, (61), 51 states have internal predecessors, (61), 14 states have call successors, (14), 8 states have call predecessors, (14), 8 states have return successors, (14), 11 states have call predecessors, (14), 14 states have call successors, (14) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 13:52:44,161 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:44,161 INFO L93 Difference]: Finished difference Result 130 states and 179 transitions. [2023-12-02 13:52:44,162 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-12-02 13:52:44,163 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2023-12-02 13:52:44,164 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:44,172 INFO L225 Difference]: With dead ends: 130 [2023-12-02 13:52:44,173 INFO L226 Difference]: Without dead ends: 61 [2023-12-02 13:52:44,176 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-12-02 13:52:44,179 INFO L413 NwaCegarLoop]: 68 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 68 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:44,179 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 68 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 13:52:44,191 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 61 states. [2023-12-02 13:52:44,208 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 61 to 61. [2023-12-02 13:52:44,210 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 61 states, 39 states have (on average 1.358974358974359) internal successors, (53), 47 states have internal predecessors, (53), 14 states have call successors, (14), 8 states have call predecessors, (14), 7 states have return successors, (13), 10 states have call predecessors, (13), 13 states have call successors, (13) [2023-12-02 13:52:44,212 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 61 states to 61 states and 80 transitions. [2023-12-02 13:52:44,213 INFO L78 Accepts]: Start accepts. Automaton has 61 states and 80 transitions. Word has length 21 [2023-12-02 13:52:44,213 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:44,213 INFO L495 AbstractCegarLoop]: Abstraction has 61 states and 80 transitions. [2023-12-02 13:52:44,214 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 13:52:44,214 INFO L276 IsEmpty]: Start isEmpty. Operand 61 states and 80 transitions. [2023-12-02 13:52:44,216 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 23 [2023-12-02 13:52:44,216 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:44,217 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:44,217 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-12-02 13:52:44,217 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:44,218 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:44,218 INFO L85 PathProgramCache]: Analyzing trace with hash 660411591, now seen corresponding path program 1 times [2023-12-02 13:52:44,218 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:44,218 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [712292019] [2023-12-02 13:52:44,219 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:44,219 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:44,237 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:44,314 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:52:44,315 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:44,315 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [712292019] [2023-12-02 13:52:44,315 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [712292019] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:44,315 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:44,315 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-12-02 13:52:44,316 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [2016272477] [2023-12-02 13:52:44,316 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:44,317 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-12-02 13:52:44,317 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:44,318 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-12-02 13:52:44,318 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 13:52:44,318 INFO L87 Difference]: Start difference. First operand 61 states and 80 transitions. Second operand has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 13:52:44,358 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:44,358 INFO L93 Difference]: Finished difference Result 94 states and 122 transitions. [2023-12-02 13:52:44,358 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-12-02 13:52:44,359 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 22 [2023-12-02 13:52:44,359 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:44,360 INFO L225 Difference]: With dead ends: 94 [2023-12-02 13:52:44,360 INFO L226 Difference]: Without dead ends: 53 [2023-12-02 13:52:44,361 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 13:52:44,362 INFO L413 NwaCegarLoop]: 54 mSDtfsCounter, 14 mSDsluCounter, 38 mSDsCounter, 0 mSdLazyCounter, 26 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 18 SdHoareTripleChecker+Valid, 92 SdHoareTripleChecker+Invalid, 26 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 26 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:44,363 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [18 Valid, 92 Invalid, 26 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 26 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 13:52:44,364 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 53 states. [2023-12-02 13:52:44,371 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 53 to 53. [2023-12-02 13:52:44,371 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 53 states, 34 states have (on average 1.3823529411764706) internal successors, (47), 42 states have internal predecessors, (47), 11 states have call successors, (11), 7 states have call predecessors, (11), 7 states have return successors, (11), 8 states have call predecessors, (11), 11 states have call successors, (11) [2023-12-02 13:52:44,372 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 53 states to 53 states and 69 transitions. [2023-12-02 13:52:44,373 INFO L78 Accepts]: Start accepts. Automaton has 53 states and 69 transitions. Word has length 22 [2023-12-02 13:52:44,373 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:44,373 INFO L495 AbstractCegarLoop]: Abstraction has 53 states and 69 transitions. [2023-12-02 13:52:44,373 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 5.0) internal successors, (15), 3 states have internal predecessors, (15), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 13:52:44,373 INFO L276 IsEmpty]: Start isEmpty. Operand 53 states and 69 transitions. [2023-12-02 13:52:44,375 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 26 [2023-12-02 13:52:44,375 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:44,375 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:44,375 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-12-02 13:52:44,375 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:44,376 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:44,376 INFO L85 PathProgramCache]: Analyzing trace with hash 1147841361, now seen corresponding path program 1 times [2023-12-02 13:52:44,376 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:44,376 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [993632057] [2023-12-02 13:52:44,377 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:44,377 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:44,397 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:44,487 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:52:44,488 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:44,488 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [993632057] [2023-12-02 13:52:44,488 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [993632057] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:44,488 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:44,488 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [4] imperfect sequences [] total 4 [2023-12-02 13:52:44,489 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [684465878] [2023-12-02 13:52:44,489 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:44,489 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2023-12-02 13:52:44,489 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:44,490 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2023-12-02 13:52:44,490 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2023-12-02 13:52:44,490 INFO L87 Difference]: Start difference. First operand 53 states and 69 transitions. Second operand has 4 states, 4 states have (on average 4.75) internal successors, (19), 4 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-12-02 13:52:44,581 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:44,582 INFO L93 Difference]: Finished difference Result 140 states and 183 transitions. [2023-12-02 13:52:44,582 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2023-12-02 13:52:44,582 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 4 states have (on average 4.75) internal successors, (19), 4 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 25 [2023-12-02 13:52:44,583 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:44,584 INFO L225 Difference]: With dead ends: 140 [2023-12-02 13:52:44,584 INFO L226 Difference]: Without dead ends: 89 [2023-12-02 13:52:44,585 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2023-12-02 13:52:44,587 INFO L413 NwaCegarLoop]: 60 mSDtfsCounter, 90 mSDsluCounter, 80 mSDsCounter, 0 mSdLazyCounter, 45 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 94 SdHoareTripleChecker+Valid, 140 SdHoareTripleChecker+Invalid, 53 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 45 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:44,587 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [94 Valid, 140 Invalid, 53 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 45 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 13:52:44,588 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 89 states. [2023-12-02 13:52:44,603 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 89 to 86. [2023-12-02 13:52:44,604 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 86 states, 56 states have (on average 1.375) internal successors, (77), 67 states have internal predecessors, (77), 17 states have call successors, (17), 12 states have call predecessors, (17), 12 states have return successors, (18), 13 states have call predecessors, (18), 17 states have call successors, (18) [2023-12-02 13:52:44,605 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 86 states to 86 states and 112 transitions. [2023-12-02 13:52:44,606 INFO L78 Accepts]: Start accepts. Automaton has 86 states and 112 transitions. Word has length 25 [2023-12-02 13:52:44,606 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:44,606 INFO L495 AbstractCegarLoop]: Abstraction has 86 states and 112 transitions. [2023-12-02 13:52:44,606 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 4 states have (on average 4.75) internal successors, (19), 4 states have internal predecessors, (19), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-12-02 13:52:44,606 INFO L276 IsEmpty]: Start isEmpty. Operand 86 states and 112 transitions. [2023-12-02 13:52:44,608 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 29 [2023-12-02 13:52:44,608 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:44,608 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:44,608 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-12-02 13:52:44,609 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:44,609 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:44,609 INFO L85 PathProgramCache]: Analyzing trace with hash 128112351, now seen corresponding path program 1 times [2023-12-02 13:52:44,609 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:44,610 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [711611891] [2023-12-02 13:52:44,610 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:44,610 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:44,626 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:44,749 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2023-12-02 13:52:44,750 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:44,750 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [711611891] [2023-12-02 13:52:44,750 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [711611891] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:44,750 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:44,750 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-12-02 13:52:44,750 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [882959125] [2023-12-02 13:52:44,751 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:44,751 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-12-02 13:52:44,751 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:44,752 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-12-02 13:52:44,752 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2023-12-02 13:52:44,752 INFO L87 Difference]: Start difference. First operand 86 states and 112 transitions. Second operand has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 13:52:44,906 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:44,906 INFO L93 Difference]: Finished difference Result 206 states and 275 transitions. [2023-12-02 13:52:44,907 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2023-12-02 13:52:44,907 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 28 [2023-12-02 13:52:44,908 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:44,909 INFO L225 Difference]: With dead ends: 206 [2023-12-02 13:52:44,909 INFO L226 Difference]: Without dead ends: 122 [2023-12-02 13:52:44,911 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2023-12-02 13:52:44,912 INFO L413 NwaCegarLoop]: 57 mSDtfsCounter, 34 mSDsluCounter, 186 mSDsCounter, 0 mSdLazyCounter, 120 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 35 SdHoareTripleChecker+Valid, 243 SdHoareTripleChecker+Invalid, 128 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 120 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:44,913 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [35 Valid, 243 Invalid, 128 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 120 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 13:52:44,914 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 122 states. [2023-12-02 13:52:44,930 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 122 to 118. [2023-12-02 13:52:44,931 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 118 states, 79 states have (on average 1.2911392405063291) internal successors, (102), 89 states have internal predecessors, (102), 21 states have call successors, (21), 17 states have call predecessors, (21), 17 states have return successors, (27), 20 states have call predecessors, (27), 21 states have call successors, (27) [2023-12-02 13:52:44,933 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 118 states to 118 states and 150 transitions. [2023-12-02 13:52:44,933 INFO L78 Accepts]: Start accepts. Automaton has 118 states and 150 transitions. Word has length 28 [2023-12-02 13:52:44,933 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:44,933 INFO L495 AbstractCegarLoop]: Abstraction has 118 states and 150 transitions. [2023-12-02 13:52:44,934 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 4.6) internal successors, (23), 5 states have internal predecessors, (23), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 13:52:44,934 INFO L276 IsEmpty]: Start isEmpty. Operand 118 states and 150 transitions. [2023-12-02 13:52:44,936 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2023-12-02 13:52:44,936 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:44,936 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:44,936 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-12-02 13:52:44,936 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:44,937 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:44,937 INFO L85 PathProgramCache]: Analyzing trace with hash -494996862, now seen corresponding path program 1 times [2023-12-02 13:52:44,937 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:44,937 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1571074007] [2023-12-02 13:52:44,937 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:44,937 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:44,952 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:44,980 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:52:44,981 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:44,981 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1571074007] [2023-12-02 13:52:44,981 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1571074007] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:44,981 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:44,981 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-12-02 13:52:44,981 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [385205400] [2023-12-02 13:52:44,982 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:44,982 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-12-02 13:52:44,982 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:44,983 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-12-02 13:52:44,983 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 13:52:44,983 INFO L87 Difference]: Start difference. First operand 118 states and 150 transitions. Second operand has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2023-12-02 13:52:45,035 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:45,036 INFO L93 Difference]: Finished difference Result 236 states and 300 transitions. [2023-12-02 13:52:45,036 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-12-02 13:52:45,036 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) Word has length 36 [2023-12-02 13:52:45,037 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:45,038 INFO L225 Difference]: With dead ends: 236 [2023-12-02 13:52:45,038 INFO L226 Difference]: Without dead ends: 120 [2023-12-02 13:52:45,040 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 13:52:45,041 INFO L413 NwaCegarLoop]: 75 mSDtfsCounter, 30 mSDsluCounter, 52 mSDsCounter, 0 mSdLazyCounter, 39 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 30 SdHoareTripleChecker+Valid, 127 SdHoareTripleChecker+Invalid, 39 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 39 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:45,042 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [30 Valid, 127 Invalid, 39 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 39 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 13:52:45,043 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 120 states. [2023-12-02 13:52:45,057 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 120 to 118. [2023-12-02 13:52:45,057 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 118 states, 79 states have (on average 1.2784810126582278) internal successors, (101), 89 states have internal predecessors, (101), 21 states have call successors, (21), 17 states have call predecessors, (21), 17 states have return successors, (25), 20 states have call predecessors, (25), 21 states have call successors, (25) [2023-12-02 13:52:45,059 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 118 states to 118 states and 147 transitions. [2023-12-02 13:52:45,059 INFO L78 Accepts]: Start accepts. Automaton has 118 states and 147 transitions. Word has length 36 [2023-12-02 13:52:45,059 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:45,060 INFO L495 AbstractCegarLoop]: Abstraction has 118 states and 147 transitions. [2023-12-02 13:52:45,060 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 9.333333333333334) internal successors, (28), 3 states have internal predecessors, (28), 2 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (3), 2 states have call predecessors, (3), 2 states have call successors, (3) [2023-12-02 13:52:45,060 INFO L276 IsEmpty]: Start isEmpty. Operand 118 states and 147 transitions. [2023-12-02 13:52:45,062 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 34 [2023-12-02 13:52:45,062 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:45,062 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:45,062 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2023-12-02 13:52:45,062 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:45,063 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:45,063 INFO L85 PathProgramCache]: Analyzing trace with hash 447493364, now seen corresponding path program 1 times [2023-12-02 13:52:45,063 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:45,063 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1703800409] [2023-12-02 13:52:45,063 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:45,063 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:45,083 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:45,298 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:52:45,299 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:45,299 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1703800409] [2023-12-02 13:52:45,299 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1703800409] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:45,299 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:45,299 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-12-02 13:52:45,299 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [997858117] [2023-12-02 13:52:45,300 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:45,300 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-12-02 13:52:45,300 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:45,301 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-12-02 13:52:45,301 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2023-12-02 13:52:45,301 INFO L87 Difference]: Start difference. First operand 118 states and 147 transitions. Second operand has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2023-12-02 13:52:45,510 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:45,510 INFO L93 Difference]: Finished difference Result 370 states and 463 transitions. [2023-12-02 13:52:45,511 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2023-12-02 13:52:45,511 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 33 [2023-12-02 13:52:45,512 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:45,515 INFO L225 Difference]: With dead ends: 370 [2023-12-02 13:52:45,515 INFO L226 Difference]: Without dead ends: 254 [2023-12-02 13:52:45,516 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2023-12-02 13:52:45,517 INFO L413 NwaCegarLoop]: 84 mSDtfsCounter, 83 mSDsluCounter, 177 mSDsCounter, 0 mSdLazyCounter, 164 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 84 SdHoareTripleChecker+Valid, 261 SdHoareTripleChecker+Invalid, 171 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 164 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:45,517 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [84 Valid, 261 Invalid, 171 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 164 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 13:52:45,518 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 254 states. [2023-12-02 13:52:45,550 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 254 to 249. [2023-12-02 13:52:45,551 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 249 states, 166 states have (on average 1.2771084337349397) internal successors, (212), 185 states have internal predecessors, (212), 45 states have call successors, (45), 38 states have call predecessors, (45), 37 states have return successors, (54), 40 states have call predecessors, (54), 45 states have call successors, (54) [2023-12-02 13:52:45,553 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 249 states to 249 states and 311 transitions. [2023-12-02 13:52:45,553 INFO L78 Accepts]: Start accepts. Automaton has 249 states and 311 transitions. Word has length 33 [2023-12-02 13:52:45,554 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:45,554 INFO L495 AbstractCegarLoop]: Abstraction has 249 states and 311 transitions. [2023-12-02 13:52:45,554 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.166666666666667) internal successors, (25), 6 states have internal predecessors, (25), 3 states have call successors, (4), 2 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2023-12-02 13:52:45,554 INFO L276 IsEmpty]: Start isEmpty. Operand 249 states and 311 transitions. [2023-12-02 13:52:45,557 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 37 [2023-12-02 13:52:45,557 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:45,557 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:45,557 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2023-12-02 13:52:45,558 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:45,558 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:45,558 INFO L85 PathProgramCache]: Analyzing trace with hash 2023515885, now seen corresponding path program 1 times [2023-12-02 13:52:45,558 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:45,558 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [803030713] [2023-12-02 13:52:45,558 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:45,559 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:45,573 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:45,795 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:52:45,795 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:45,796 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [803030713] [2023-12-02 13:52:45,796 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [803030713] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 13:52:45,796 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 13:52:45,796 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2023-12-02 13:52:45,796 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1113206892] [2023-12-02 13:52:45,796 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 13:52:45,797 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2023-12-02 13:52:45,797 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:45,797 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2023-12-02 13:52:45,798 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2023-12-02 13:52:45,798 INFO L87 Difference]: Start difference. First operand 249 states and 311 transitions. Second operand has 8 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 4 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2023-12-02 13:52:46,256 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:46,256 INFO L93 Difference]: Finished difference Result 548 states and 693 transitions. [2023-12-02 13:52:46,258 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2023-12-02 13:52:46,259 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 4 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) Word has length 36 [2023-12-02 13:52:46,261 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:46,264 INFO L225 Difference]: With dead ends: 548 [2023-12-02 13:52:46,265 INFO L226 Difference]: Without dead ends: 392 [2023-12-02 13:52:46,266 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=67, Invalid=143, Unknown=0, NotChecked=0, Total=210 [2023-12-02 13:52:46,267 INFO L413 NwaCegarLoop]: 69 mSDtfsCounter, 188 mSDsluCounter, 189 mSDsCounter, 0 mSdLazyCounter, 283 mSolverCounterSat, 74 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 194 SdHoareTripleChecker+Valid, 258 SdHoareTripleChecker+Invalid, 357 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 74 IncrementalHoareTripleChecker+Valid, 283 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:46,267 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [194 Valid, 258 Invalid, 357 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [74 Valid, 283 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2023-12-02 13:52:46,269 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 392 states. [2023-12-02 13:52:46,317 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 392 to 347. [2023-12-02 13:52:46,318 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 347 states, 235 states have (on average 1.2680851063829788) internal successors, (298), 261 states have internal predecessors, (298), 60 states have call successors, (60), 47 states have call predecessors, (60), 51 states have return successors, (75), 58 states have call predecessors, (75), 60 states have call successors, (75) [2023-12-02 13:52:46,322 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 347 states to 347 states and 433 transitions. [2023-12-02 13:52:46,322 INFO L78 Accepts]: Start accepts. Automaton has 347 states and 433 transitions. Word has length 36 [2023-12-02 13:52:46,322 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:46,323 INFO L495 AbstractCegarLoop]: Abstraction has 347 states and 433 transitions. [2023-12-02 13:52:46,323 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.7142857142857144) internal successors, (26), 7 states have internal predecessors, (26), 4 states have call successors, (5), 3 states have call predecessors, (5), 2 states have return successors, (4), 3 states have call predecessors, (4), 4 states have call successors, (4) [2023-12-02 13:52:46,323 INFO L276 IsEmpty]: Start isEmpty. Operand 347 states and 433 transitions. [2023-12-02 13:52:46,326 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 63 [2023-12-02 13:52:46,326 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:46,326 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:46,327 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6 [2023-12-02 13:52:46,327 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:46,327 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:46,327 INFO L85 PathProgramCache]: Analyzing trace with hash 230197411, now seen corresponding path program 1 times [2023-12-02 13:52:46,328 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:46,328 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [463673593] [2023-12-02 13:52:46,328 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:46,328 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:46,353 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:46,755 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 0 proven. 17 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2023-12-02 13:52:46,755 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:46,756 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [463673593] [2023-12-02 13:52:46,756 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [463673593] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 13:52:46,756 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [586968231] [2023-12-02 13:52:46,756 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:46,756 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 13:52:46,756 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 13:52:46,760 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 13:52:46,765 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2023-12-02 13:52:46,863 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:46,866 INFO L262 TraceCheckSpWp]: Trace formula consists of 286 conjuncts, 18 conjunts are in the unsatisfiable core [2023-12-02 13:52:46,873 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 13:52:46,982 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 27 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 13:52:46,982 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 13:52:47,082 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 16 proven. 1 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2023-12-02 13:52:47,082 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [586968231] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 13:52:47,082 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1335053691] [2023-12-02 13:52:47,103 INFO L159 IcfgInterpreter]: Started Sifa with 37 locations of interest [2023-12-02 13:52:47,104 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 13:52:47,107 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 13:52:47,112 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 13:52:47,113 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 13:52:51,185 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 147 for LOIs [2023-12-02 13:52:51,272 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 26 for LOIs [2023-12-02 13:52:51,533 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 48 for LOIs [2023-12-02 13:52:51,556 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 21 for LOIs [2023-12-02 13:52:51,593 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 13:52:55,559 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4232#(and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (= ~methaneLevelCritical~0 0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 1) (exists ((|v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_9| Int)) (and (<= 0 (+ 2147483648 |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_9|)) (not (= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_9| 0)) (<= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_9| 2147483647))) (<= 2 ~waterLevel~0) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2)) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (= |old(~waterLevel~0)| ~waterLevel~0) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (= ~switchedOnBeforeTS~0 0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (= ~pumpRunning~0 1) (= |old(~switchedOnBeforeTS~0)| 0))' at error location [2023-12-02 13:52:55,559 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 13:52:55,559 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 13:52:55,559 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 6, 6] total 14 [2023-12-02 13:52:55,560 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1499978217] [2023-12-02 13:52:55,560 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 13:52:55,560 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2023-12-02 13:52:55,560 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:52:55,561 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2023-12-02 13:52:55,562 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=227, Invalid=1579, Unknown=0, NotChecked=0, Total=1806 [2023-12-02 13:52:55,562 INFO L87 Difference]: Start difference. First operand 347 states and 433 transitions. Second operand has 14 states, 13 states have (on average 5.384615384615385) internal successors, (70), 13 states have internal predecessors, (70), 7 states have call successors, (15), 5 states have call predecessors, (15), 5 states have return successors, (14), 6 states have call predecessors, (14), 7 states have call successors, (14) [2023-12-02 13:52:56,711 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:52:56,711 INFO L93 Difference]: Finished difference Result 1054 states and 1356 transitions. [2023-12-02 13:52:56,712 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 36 states. [2023-12-02 13:52:56,712 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 13 states have (on average 5.384615384615385) internal successors, (70), 13 states have internal predecessors, (70), 7 states have call successors, (15), 5 states have call predecessors, (15), 5 states have return successors, (14), 6 states have call predecessors, (14), 7 states have call successors, (14) Word has length 62 [2023-12-02 13:52:56,713 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:52:56,718 INFO L225 Difference]: With dead ends: 1054 [2023-12-02 13:52:56,718 INFO L226 Difference]: Without dead ends: 709 [2023-12-02 13:52:56,722 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 235 GetRequests, 169 SyntacticMatches, 0 SemanticMatches, 66 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1561 ImplicationChecksByTransitivity, 4.6s TimeCoverageRelationStatistics Valid=598, Invalid=3958, Unknown=0, NotChecked=0, Total=4556 [2023-12-02 13:52:56,723 INFO L413 NwaCegarLoop]: 59 mSDtfsCounter, 367 mSDsluCounter, 376 mSDsCounter, 0 mSdLazyCounter, 729 mSolverCounterSat, 243 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 374 SdHoareTripleChecker+Valid, 435 SdHoareTripleChecker+Invalid, 972 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 243 IncrementalHoareTripleChecker+Valid, 729 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2023-12-02 13:52:56,723 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [374 Valid, 435 Invalid, 972 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [243 Valid, 729 Invalid, 0 Unknown, 0 Unchecked, 0.5s Time] [2023-12-02 13:52:56,724 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 709 states. [2023-12-02 13:52:56,779 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 709 to 623. [2023-12-02 13:52:56,780 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 623 states, 421 states have (on average 1.2422802850356294) internal successors, (523), 471 states have internal predecessors, (523), 103 states have call successors, (103), 84 states have call predecessors, (103), 98 states have return successors, (152), 102 states have call predecessors, (152), 103 states have call successors, (152) [2023-12-02 13:52:56,785 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 623 states to 623 states and 778 transitions. [2023-12-02 13:52:56,785 INFO L78 Accepts]: Start accepts. Automaton has 623 states and 778 transitions. Word has length 62 [2023-12-02 13:52:56,786 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:52:56,786 INFO L495 AbstractCegarLoop]: Abstraction has 623 states and 778 transitions. [2023-12-02 13:52:56,786 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 13 states have (on average 5.384615384615385) internal successors, (70), 13 states have internal predecessors, (70), 7 states have call successors, (15), 5 states have call predecessors, (15), 5 states have return successors, (14), 6 states have call predecessors, (14), 7 states have call successors, (14) [2023-12-02 13:52:56,786 INFO L276 IsEmpty]: Start isEmpty. Operand 623 states and 778 transitions. [2023-12-02 13:52:56,788 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2023-12-02 13:52:56,788 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:52:56,788 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:52:56,796 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2023-12-02 13:52:56,989 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 13:52:56,989 INFO L420 AbstractCegarLoop]: === Iteration 9 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:52:56,989 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:52:56,989 INFO L85 PathProgramCache]: Analyzing trace with hash -454736957, now seen corresponding path program 1 times [2023-12-02 13:52:56,990 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:52:56,990 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [348313338] [2023-12-02 13:52:56,990 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:56,990 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:52:57,005 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:57,171 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 1 proven. 21 refuted. 0 times theorem prover too weak. 4 trivial. 0 not checked. [2023-12-02 13:52:57,171 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:52:57,171 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [348313338] [2023-12-02 13:52:57,171 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [348313338] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 13:52:57,171 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [538728513] [2023-12-02 13:52:57,172 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:52:57,172 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 13:52:57,172 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 13:52:57,173 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 13:52:57,177 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2023-12-02 13:52:57,255 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:52:57,256 INFO L262 TraceCheckSpWp]: Trace formula consists of 282 conjuncts, 13 conjunts are in the unsatisfiable core [2023-12-02 13:52:57,260 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 13:52:57,302 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 14 proven. 1 refuted. 0 times theorem prover too weak. 11 trivial. 0 not checked. [2023-12-02 13:52:57,302 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 13:52:57,370 INFO L134 CoverageAnalysis]: Checked inductivity of 26 backedges. 7 proven. 1 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2023-12-02 13:52:57,371 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [538728513] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 13:52:57,371 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1380561253] [2023-12-02 13:52:57,374 INFO L159 IcfgInterpreter]: Started Sifa with 42 locations of interest [2023-12-02 13:52:57,374 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 13:52:57,374 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 13:52:57,375 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 13:52:57,375 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 13:52:59,450 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 50 for LOIs [2023-12-02 13:52:59,458 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 24 for LOIs [2023-12-02 13:52:59,696 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 48 for LOIs [2023-12-02 13:52:59,710 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 41 for LOIs [2023-12-02 13:52:59,787 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__base with input of size 30 for LOIs [2023-12-02 13:52:59,789 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 13:53:02,465 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6961#(and (or (and (<= 0 |old(~waterLevel~0)|) (= |timeShift_isLowWaterLevel_#res#1| 0) (= |timeShift_isLowWaterSensorDry_#res#1| 1) (= |timeShift_getWaterLevel_#res#1| 0) (<= |old(~waterLevel~0)| 1) (= ~waterLevel~0 0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 0) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|)) (and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2)) (= |old(~pumpRunning~0)| 0) (exists ((|v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_17| Int)) (and (not (= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_17| 0)) (<= 0 (+ |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_17| 2147483648)) (<= |v_ULTIMATE.start_test_~tmp___2~0#1_BEFORE_CALL_17| 2147483647))) (= |old(~waterLevel~0)| ~waterLevel~0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|))) (<= 0 (+ |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2147483648)) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 2147483647) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 0)) (<= |old(~pumpRunning~0)| 2147483647) (= 1 ~systemActive~0) (<= 0 (+ |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 2147483648)) (<= ~waterLevel~0 2147483647) (= ~switchedOnBeforeTS~0 0))' at error location [2023-12-02 13:53:02,465 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 13:53:02,465 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 13:53:02,465 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10, 6, 6] total 13 [2023-12-02 13:53:02,465 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [858098615] [2023-12-02 13:53:02,465 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 13:53:02,466 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2023-12-02 13:53:02,466 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:53:02,467 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2023-12-02 13:53:02,468 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=255, Invalid=2001, Unknown=0, NotChecked=0, Total=2256 [2023-12-02 13:53:02,468 INFO L87 Difference]: Start difference. First operand 623 states and 778 transitions. Second operand has 13 states, 11 states have (on average 6.181818181818182) internal successors, (68), 11 states have internal predecessors, (68), 4 states have call successors, (14), 3 states have call predecessors, (14), 5 states have return successors, (17), 7 states have call predecessors, (17), 4 states have call successors, (17) [2023-12-02 13:53:03,214 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:53:03,214 INFO L93 Difference]: Finished difference Result 1250 states and 1599 transitions. [2023-12-02 13:53:03,215 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 29 states. [2023-12-02 13:53:03,215 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 11 states have (on average 6.181818181818182) internal successors, (68), 11 states have internal predecessors, (68), 4 states have call successors, (14), 3 states have call predecessors, (14), 5 states have return successors, (17), 7 states have call predecessors, (17), 4 states have call successors, (17) Word has length 65 [2023-12-02 13:53:03,215 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:53:03,221 INFO L225 Difference]: With dead ends: 1250 [2023-12-02 13:53:03,221 INFO L226 Difference]: Without dead ends: 784 [2023-12-02 13:53:03,224 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 239 GetRequests, 170 SyntacticMatches, 0 SemanticMatches, 69 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1622 ImplicationChecksByTransitivity, 3.1s TimeCoverageRelationStatistics Valid=530, Invalid=4440, Unknown=0, NotChecked=0, Total=4970 [2023-12-02 13:53:03,225 INFO L413 NwaCegarLoop]: 92 mSDtfsCounter, 290 mSDsluCounter, 378 mSDsCounter, 0 mSdLazyCounter, 559 mSolverCounterSat, 144 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 294 SdHoareTripleChecker+Valid, 470 SdHoareTripleChecker+Invalid, 703 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 144 IncrementalHoareTripleChecker+Valid, 559 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2023-12-02 13:53:03,225 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [294 Valid, 470 Invalid, 703 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [144 Valid, 559 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2023-12-02 13:53:03,227 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 784 states. [2023-12-02 13:53:03,284 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 784 to 695. [2023-12-02 13:53:03,285 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 695 states, 469 states have (on average 1.2260127931769722) internal successors, (575), 525 states have internal predecessors, (575), 116 states have call successors, (116), 96 states have call predecessors, (116), 109 states have return successors, (171), 113 states have call predecessors, (171), 116 states have call successors, (171) [2023-12-02 13:53:03,290 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 695 states to 695 states and 862 transitions. [2023-12-02 13:53:03,291 INFO L78 Accepts]: Start accepts. Automaton has 695 states and 862 transitions. Word has length 65 [2023-12-02 13:53:03,291 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:53:03,291 INFO L495 AbstractCegarLoop]: Abstraction has 695 states and 862 transitions. [2023-12-02 13:53:03,291 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 11 states have (on average 6.181818181818182) internal successors, (68), 11 states have internal predecessors, (68), 4 states have call successors, (14), 3 states have call predecessors, (14), 5 states have return successors, (17), 7 states have call predecessors, (17), 4 states have call successors, (17) [2023-12-02 13:53:03,292 INFO L276 IsEmpty]: Start isEmpty. Operand 695 states and 862 transitions. [2023-12-02 13:53:03,294 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2023-12-02 13:53:03,294 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 13:53:03,294 INFO L195 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:53:03,300 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2023-12-02 13:53:03,495 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 13:53:03,496 INFO L420 AbstractCegarLoop]: === Iteration 10 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 13:53:03,496 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 13:53:03,496 INFO L85 PathProgramCache]: Analyzing trace with hash -754178252, now seen corresponding path program 1 times [2023-12-02 13:53:03,496 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 13:53:03,496 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [4289318] [2023-12-02 13:53:03,497 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:53:03,497 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 13:53:03,517 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:53:04,193 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 12 proven. 45 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2023-12-02 13:53:04,193 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 13:53:04,193 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [4289318] [2023-12-02 13:53:04,193 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [4289318] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 13:53:04,193 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1107249143] [2023-12-02 13:53:04,193 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 13:53:04,193 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 13:53:04,193 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 13:53:04,194 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 13:53:04,195 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2023-12-02 13:53:04,281 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 13:53:04,283 INFO L262 TraceCheckSpWp]: Trace formula consists of 374 conjuncts, 26 conjunts are in the unsatisfiable core [2023-12-02 13:53:04,288 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 13:53:04,587 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 37 proven. 40 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 13:53:04,587 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 13:53:04,984 INFO L134 CoverageAnalysis]: Checked inductivity of 79 backedges. 52 proven. 5 refuted. 0 times theorem prover too weak. 22 trivial. 0 not checked. [2023-12-02 13:53:04,984 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1107249143] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 13:53:04,985 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1992103617] [2023-12-02 13:53:04,987 INFO L159 IcfgInterpreter]: Started Sifa with 41 locations of interest [2023-12-02 13:53:04,987 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 13:53:04,987 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 13:53:04,987 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 13:53:04,987 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 13:53:07,043 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 47 for LOIs [2023-12-02 13:53:07,053 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 25 for LOIs [2023-12-02 13:53:07,361 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 34 for LOIs [2023-12-02 13:53:07,368 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 21 for LOIs [2023-12-02 13:53:07,401 INFO L197 IcfgInterpreter]: Interpreting procedure deactivatePump with input of size 28 for LOIs [2023-12-02 13:53:07,404 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 13:53:10,143 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10228#(and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (<= 0 |old(~pumpRunning~0)|) (<= ~pumpRunning~0 1) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1| 0)) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2)) (<= |old(~pumpRunning~0)| 2147483647) (= 1 ~systemActive~0) (<= 0 (+ 2147483648 |timeShift_getWaterLevel_#res#1|)) (<= |timeShift_getWaterLevel_#res#1| 2147483647) (<= 0 ~pumpRunning~0) (= ~switchedOnBeforeTS~0 0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~3#1|))' at error location [2023-12-02 13:53:10,144 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 13:53:10,144 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 13:53:10,144 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 13, 11] total 32 [2023-12-02 13:53:10,144 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1420973767] [2023-12-02 13:53:10,144 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 13:53:10,145 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 32 states [2023-12-02 13:53:10,145 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 13:53:10,146 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2023-12-02 13:53:10,148 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=457, Invalid=3833, Unknown=0, NotChecked=0, Total=4290 [2023-12-02 13:53:10,148 INFO L87 Difference]: Start difference. First operand 695 states and 862 transitions. Second operand has 32 states, 30 states have (on average 5.033333333333333) internal successors, (151), 31 states have internal predecessors, (151), 18 states have call successors, (31), 9 states have call predecessors, (31), 13 states have return successors, (29), 16 states have call predecessors, (29), 17 states have call successors, (29) [2023-12-02 13:53:14,825 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 13:53:14,825 INFO L93 Difference]: Finished difference Result 2559 states and 3524 transitions. [2023-12-02 13:53:14,825 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 102 states. [2023-12-02 13:53:14,826 INFO L78 Accepts]: Start accepts. Automaton has has 32 states, 30 states have (on average 5.033333333333333) internal successors, (151), 31 states have internal predecessors, (151), 18 states have call successors, (31), 9 states have call predecessors, (31), 13 states have return successors, (29), 16 states have call predecessors, (29), 17 states have call successors, (29) Word has length 91 [2023-12-02 13:53:14,826 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 13:53:14,827 INFO L225 Difference]: With dead ends: 2559 [2023-12-02 13:53:14,827 INFO L226 Difference]: Without dead ends: 0 [2023-12-02 13:53:14,844 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 446 GetRequests, 281 SyntacticMatches, 5 SemanticMatches, 160 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 10338 ImplicationChecksByTransitivity, 5.5s TimeCoverageRelationStatistics Valid=3141, Invalid=22941, Unknown=0, NotChecked=0, Total=26082 [2023-12-02 13:53:14,845 INFO L413 NwaCegarLoop]: 159 mSDtfsCounter, 1416 mSDsluCounter, 1724 mSDsCounter, 0 mSdLazyCounter, 3140 mSolverCounterSat, 778 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1420 SdHoareTripleChecker+Valid, 1883 SdHoareTripleChecker+Invalid, 3918 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 778 IncrementalHoareTripleChecker+Valid, 3140 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.8s IncrementalHoareTripleChecker+Time [2023-12-02 13:53:14,845 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1420 Valid, 1883 Invalid, 3918 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [778 Valid, 3140 Invalid, 0 Unknown, 0 Unchecked, 1.8s Time] [2023-12-02 13:53:14,846 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-12-02 13:53:14,846 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-12-02 13:53:14,846 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 13:53:14,846 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-12-02 13:53:14,847 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 91 [2023-12-02 13:53:14,847 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 13:53:14,847 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-12-02 13:53:14,847 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 32 states, 30 states have (on average 5.033333333333333) internal successors, (151), 31 states have internal predecessors, (151), 18 states have call successors, (31), 9 states have call predecessors, (31), 13 states have return successors, (29), 16 states have call predecessors, (29), 17 states have call successors, (29) [2023-12-02 13:53:14,847 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-12-02 13:53:14,848 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-12-02 13:53:14,850 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-12-02 13:53:14,856 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Ended with exit code 0 [2023-12-02 13:53:15,051 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2023-12-02 13:53:15,052 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-12-02 13:53:21,076 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 179 186) no Hoare annotation was computed. [2023-12-02 13:53:21,076 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 179 186) the Hoare annotation is: (let ((.cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse2 (= ~switchedOnBeforeTS~0 0)) (.cse3 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) (.cse0 (not (= 1 ~systemActive~0)))) (and (or (not (= ~waterLevel~0 1)) .cse0 .cse1 .cse2 .cse3) (or .cse0 (< 0 ~waterLevel~0) .cse1 .cse2 .cse3) (or (= ~pumpRunning~0 |old(~pumpRunning~0)|) .cse0 (not (= 2 ~waterLevel~0)) (= |old(~pumpRunning~0)| 0)))) [2023-12-02 13:53:21,076 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 94 100) no Hoare annotation was computed. [2023-12-02 13:53:21,076 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 94 100) the Hoare annotation is: true [2023-12-02 13:53:21,076 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 964 975) the Hoare annotation is: true [2023-12-02 13:53:21,076 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 964 975) no Hoare annotation was computed. [2023-12-02 13:53:21,076 INFO L902 garLoopResultBuilder]: At program point L801(line 801) the Hoare annotation is: true [2023-12-02 13:53:21,077 INFO L899 garLoopResultBuilder]: For program point L801-1(line 801) no Hoare annotation was computed. [2023-12-02 13:53:21,077 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 795 824) no Hoare annotation was computed. [2023-12-02 13:53:21,077 INFO L899 garLoopResultBuilder]: For program point L820(lines 795 824) no Hoare annotation was computed. [2023-12-02 13:53:21,077 INFO L899 garLoopResultBuilder]: For program point L816(line 816) no Hoare annotation was computed. [2023-12-02 13:53:21,077 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 795 824) the Hoare annotation is: true [2023-12-02 13:53:21,077 INFO L899 garLoopResultBuilder]: For program point L809(lines 809 813) no Hoare annotation was computed. [2023-12-02 13:53:21,077 INFO L902 garLoopResultBuilder]: At program point L809-1(lines 809 813) the Hoare annotation is: true [2023-12-02 13:53:21,077 INFO L902 garLoopResultBuilder]: At program point L805-2(lines 805 819) the Hoare annotation is: true [2023-12-02 13:53:21,077 INFO L899 garLoopResultBuilder]: For program point L411(lines 411 417) no Hoare annotation was computed. [2023-12-02 13:53:21,077 INFO L895 garLoopResultBuilder]: At program point L147(line 147) the Hoare annotation is: (let ((.cse7 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (< 1 |old(~waterLevel~0)|)) (.cse2 (not (= 1 ~systemActive~0))) (.cse3 (= ~pumpRunning~0 0)) (.cse4 (= ~switchedOnBeforeTS~0 0)) (.cse1 (not .cse7)) (.cse6 (not (= |old(~waterLevel~0)| 2))) (.cse5 (not (= 0 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 (and .cse3 (= |old(~waterLevel~0)| ~waterLevel~0) .cse4)) (or (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) .cse2 (< 2 |old(~waterLevel~0)|) (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse0 .cse1 .cse5) (or .cse2 .cse6 (and .cse3 (= 2 ~waterLevel~0) .cse7 .cse4)) (or .cse1 .cse6 .cse5)))) [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L147-1(lines 128 152) no Hoare annotation was computed. [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L81-1(lines 81 87) no Hoare annotation was computed. [2023-12-02 13:53:21,078 INFO L895 garLoopResultBuilder]: At program point L408(line 408) the Hoare annotation is: (let ((.cse6 (= ~pumpRunning~0 0)) (.cse13 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| ~waterLevel~0)) (.cse14 (= ~switchedOnBeforeTS~0 0))) (let ((.cse9 (and .cse6 .cse13 .cse7 .cse14)) (.cse10 (< 1 |old(~waterLevel~0)|)) (.cse1 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse5 (not .cse14)) (.cse0 (not (= 1 ~systemActive~0))) (.cse8 (not (= |old(~pumpRunning~0)| 0))) (.cse4 (not (= |old(~waterLevel~0)| 2))) (.cse11 (not (= 0 ~systemActive~0)))) (and (let ((.cse2 (= ~waterLevel~0 1))) (or .cse0 (and .cse1 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 1) .cse2 .cse3) .cse4 (and .cse5 .cse6 .cse2 .cse7))) (or .cse8 .cse9 .cse0 (< 2 |old(~waterLevel~0)|)) (or .cse10 .cse8 .cse9 .cse11) (let ((.cse12 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |old(~waterLevel~0)|)) .cse13))) (or .cse10 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) (and .cse1 .cse12 (<= ~waterLevel~0 0) .cse7 .cse3) (and .cse5 .cse6 (or (< |old(~waterLevel~0)| 1) (< ~waterLevel~0 |old(~waterLevel~0)|)) .cse12 .cse7) .cse0 (= |old(~switchedOnBeforeTS~0)| 0))) (or .cse8 .cse4 .cse11)))) [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L408-1(line 408) no Hoare annotation was computed. [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L74-2(lines 70 92) no Hoare annotation was computed. [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L136(lines 136 144) no Hoare annotation was computed. [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L933(line 933) no Hoare annotation was computed. [2023-12-02 13:53:21,078 INFO L899 garLoopResultBuilder]: For program point L132(lines 132 149) no Hoare annotation was computed. [2023-12-02 13:53:21,079 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 67 93) the Hoare annotation is: (let ((.cse7 (= |old(~switchedOnBeforeTS~0)| 0)) (.cse14 (= ~switchedOnBeforeTS~0 0)) (.cse1 (= ~pumpRunning~0 0)) (.cse12 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse8 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse10 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse5 (< 1 |old(~waterLevel~0)|)) (.cse6 (and (not .cse14) .cse1 .cse12)) (.cse9 (not (= 1 ~systemActive~0))) (.cse11 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse2 (= 2 ~waterLevel~0)) (.cse13 (not .cse7)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not (= |old(~waterLevel~0)| 2))) (.cse4 (not (= 0 ~systemActive~0)))) (and (or .cse0 (and .cse1 .cse2) .cse3 .cse4) (or .cse5 .cse0 .cse6 .cse4 .cse7) (or .cse8 .cse9 .cse3 .cse10) (or .cse5 .cse8 .cse9 (and .cse11 .cse12 .cse10)) (or .cse5 .cse13 .cse0 (and .cse1 .cse12 .cse14) .cse4) (or .cse0 .cse9 (< 2 |old(~waterLevel~0)|) .cse6 .cse7) (or .cse9 (and .cse11 .cse2) .cse3) (or .cse13 .cse0 .cse3 .cse14 .cse4)))) [2023-12-02 13:53:21,079 INFO L895 garLoopResultBuilder]: At program point L393(line 393) the Hoare annotation is: (let ((.cse7 (= |old(~switchedOnBeforeTS~0)| 0)) (.cse14 (= ~switchedOnBeforeTS~0 0)) (.cse1 (= ~pumpRunning~0 0)) (.cse12 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse8 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse10 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse5 (< 1 |old(~waterLevel~0)|)) (.cse6 (and (not .cse14) .cse1 .cse12)) (.cse9 (not (= 1 ~systemActive~0))) (.cse11 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse2 (= 2 ~waterLevel~0)) (.cse13 (not .cse7)) (.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse3 (not (= |old(~waterLevel~0)| 2))) (.cse4 (not (= 0 ~systemActive~0)))) (and (or .cse0 (and .cse1 .cse2) .cse3 .cse4) (or .cse5 .cse0 .cse6 .cse4 .cse7) (or .cse8 .cse9 .cse3 .cse10) (or .cse5 .cse8 .cse9 (and .cse11 .cse12 .cse10)) (or .cse5 .cse13 .cse0 (and .cse1 .cse12 .cse14) .cse4) (or .cse0 .cse9 (< 2 |old(~waterLevel~0)|) .cse6 .cse7) (or .cse9 (and .cse11 .cse2) .cse3) (or .cse13 .cse0 .cse3 .cse14 .cse4)))) [2023-12-02 13:53:21,079 INFO L899 garLoopResultBuilder]: For program point L393-1(line 393) no Hoare annotation was computed. [2023-12-02 13:53:21,079 INFO L899 garLoopResultBuilder]: For program point L410(lines 410 420) no Hoare annotation was computed. [2023-12-02 13:53:21,079 INFO L899 garLoopResultBuilder]: For program point L406(lines 406 423) no Hoare annotation was computed. [2023-12-02 13:53:21,079 INFO L899 garLoopResultBuilder]: For program point L406-1(lines 398 426) no Hoare annotation was computed. [2023-12-02 13:53:21,079 INFO L895 garLoopResultBuilder]: At program point L142(line 142) the Hoare annotation is: (let ((.cse7 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse2 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse6 (< 2 |old(~waterLevel~0)|)) (.cse4 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= |old(~waterLevel~0)| 2))) (.cse5 (not (= 0 ~systemActive~0)))) (and (or .cse0 .cse1 (and .cse2 (= ~waterLevel~0 1) .cse3)) (or (< 1 |old(~waterLevel~0)|) .cse4 .cse5) (or .cse4 .cse0 .cse6) (or .cse7 (not (= |old(~waterLevel~0)| 1)) .cse0 (<= ~waterLevel~0 0)) (or .cse7 (and .cse2 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |old(~waterLevel~0)|)) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse3) .cse0 .cse6) (or .cse4 .cse1 .cse5))) [2023-12-02 13:53:21,079 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 67 93) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L895 garLoopResultBuilder]: At program point L138(line 138) the Hoare annotation is: (let ((.cse7 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse2 (= ~pumpRunning~0 |old(~pumpRunning~0)|)) (.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse0 (not (= 1 ~systemActive~0))) (.cse6 (< 2 |old(~waterLevel~0)|)) (.cse4 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= |old(~waterLevel~0)| 2))) (.cse5 (not (= 0 ~systemActive~0)))) (and (or .cse0 .cse1 (and .cse2 (= ~waterLevel~0 1) .cse3)) (or (< 1 |old(~waterLevel~0)|) .cse4 .cse5) (or .cse4 .cse0 .cse6) (or .cse7 (not (= |old(~waterLevel~0)| 1)) .cse0 (<= ~waterLevel~0 0)) (or .cse7 (and .cse2 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |old(~waterLevel~0)|)) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse3) .cse0 .cse6) (or .cse4 .cse1 .cse5))) [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 933) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L895 garLoopResultBuilder]: At program point L287(line 287) the Hoare annotation is: (let ((.cse0 (not (= ~pumpRunning~0 0))) (.cse1 (= 1 ~systemActive~0)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse3 (= |ULTIMATE.start_main_~tmp~10#1| 1))) (or (and .cse0 (= 2 ~waterLevel~0) .cse1 .cse2 .cse3) (and .cse0 (<= ~waterLevel~0 1) .cse1 .cse2 .cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)))) [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point L371(lines 308 375) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point L338(lines 338 344) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point L338-1(lines 338 344) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L895 garLoopResultBuilder]: At program point L330(line 330) the Hoare annotation is: (let ((.cse4 (= ~pumpRunning~0 0)) (.cse3 (<= ~waterLevel~0 1)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| 1))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and .cse3 .cse0 .cse1 .cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse4 .cse1 (<= ~waterLevel~0 2) (= 0 ~systemActive~0) .cse2 (= ~switchedOnBeforeTS~0 0)) (and .cse4 .cse3 .cse0 .cse1 .cse2))) [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point L285(lines 285 291) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point L285-1(lines 285 291) no Hoare annotation was computed. [2023-12-02 13:53:21,080 INFO L899 garLoopResultBuilder]: For program point L880(lines 880 887) no Hoare annotation was computed. [2023-12-02 13:53:21,081 INFO L895 garLoopResultBuilder]: At program point L368(lines 317 369) the Hoare annotation is: false [2023-12-02 13:53:21,081 INFO L899 garLoopResultBuilder]: For program point L880-2(lines 880 887) no Hoare annotation was computed. [2023-12-02 13:53:21,081 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-12-02 13:53:21,081 INFO L899 garLoopResultBuilder]: For program point L356(lines 356 362) no Hoare annotation was computed. [2023-12-02 13:53:21,081 INFO L895 garLoopResultBuilder]: At program point L356-2(lines 348 363) the Hoare annotation is: (let ((.cse0 (= 1 ~systemActive~0)) (.cse3 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse4 (<= ~waterLevel~0 2)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| 1))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and (<= ~waterLevel~0 1) .cse0 .cse1 .cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse3 .cse0 .cse1 .cse4 .cse2) (and .cse3 .cse1 .cse4 (= 0 ~systemActive~0) .cse2))) [2023-12-02 13:53:21,081 INFO L899 garLoopResultBuilder]: For program point L319(lines 318 367) no Hoare annotation was computed. [2023-12-02 13:53:21,081 INFO L899 garLoopResultBuilder]: For program point L348(lines 348 363) no Hoare annotation was computed. [2023-12-02 13:53:21,081 INFO L895 garLoopResultBuilder]: At program point L340(line 340) the Hoare annotation is: (let ((.cse4 (= ~pumpRunning~0 0)) (.cse3 (<= ~waterLevel~0 1)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| 1))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and .cse3 .cse0 .cse1 .cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse4 .cse1 (<= ~waterLevel~0 2) (= 0 ~systemActive~0) .cse2 (= ~switchedOnBeforeTS~0 0)) (and .cse4 .cse3 .cse0 .cse1 .cse2))) [2023-12-02 13:53:21,081 INFO L895 garLoopResultBuilder]: At program point L365(lines 318 367) the Hoare annotation is: (let ((.cse4 (= ~pumpRunning~0 0)) (.cse3 (<= ~waterLevel~0 1)) (.cse0 (= 1 ~systemActive~0)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0)) (.cse2 (= |ULTIMATE.start_main_~tmp~10#1| 1))) (or (and (= 2 ~waterLevel~0) .cse0 .cse1 .cse2) (and .cse3 .cse0 .cse1 .cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse4 .cse1 (<= ~waterLevel~0 2) (= 0 ~systemActive~0) .cse2 (= ~switchedOnBeforeTS~0 0)) (and .cse4 .cse3 .cse0 .cse1 .cse2))) [2023-12-02 13:53:21,081 INFO L899 garLoopResultBuilder]: For program point L328(lines 328 334) no Hoare annotation was computed. [2023-12-02 13:53:21,082 INFO L899 garLoopResultBuilder]: For program point L328-1(lines 328 334) no Hoare annotation was computed. [2023-12-02 13:53:21,082 INFO L895 garLoopResultBuilder]: At program point L116(line 116) the Hoare annotation is: (let ((.cse4 (= ~switchedOnBeforeTS~0 0))) (let ((.cse0 (not .cse4)) (.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (= ~pumpRunning~0 0)) (.cse3 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 .cse3 (not (= 2 ~waterLevel~0))) (or .cse0 .cse1 .cse3 (< 1 ~waterLevel~0) (and .cse2 (= |processEnvironment__wrappee__highWaterSensor_~tmp~0#1| 0))) (or (< 2 ~waterLevel~0) .cse3 .cse4 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))))) [2023-12-02 13:53:21,082 INFO L899 garLoopResultBuilder]: For program point L110(lines 110 118) no Hoare annotation was computed. [2023-12-02 13:53:21,082 INFO L899 garLoopResultBuilder]: For program point L106(lines 106 123) no Hoare annotation was computed. [2023-12-02 13:53:21,082 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 102 126) the Hoare annotation is: (or (< 2 ~waterLevel~0) (not (= 1 ~systemActive~0)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2023-12-02 13:53:21,082 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 102 126) no Hoare annotation was computed. [2023-12-02 13:53:21,082 INFO L895 garLoopResultBuilder]: At program point L121(line 121) the Hoare annotation is: (let ((.cse0 (not (= ~switchedOnBeforeTS~0 0))) (.cse1 (not (= |old(~pumpRunning~0)| 0))) (.cse2 (not (= 1 ~systemActive~0)))) (and (or .cse0 .cse1 .cse2 (< 1 ~waterLevel~0)) (or (< 2 ~waterLevel~0) .cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) (or .cse0 .cse1 .cse2 (not (= 2 ~waterLevel~0))))) [2023-12-02 13:53:21,082 INFO L899 garLoopResultBuilder]: For program point L121-1(lines 102 126) no Hoare annotation was computed. [2023-12-02 13:53:21,082 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 952 963) no Hoare annotation was computed. [2023-12-02 13:53:21,083 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 952 963) the Hoare annotation is: (let ((.cse1 (< 1 |old(~waterLevel~0)|)) (.cse3 (not (= ~pumpRunning~0 0))) (.cse0 (not (= 1 ~systemActive~0))) (.cse2 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or (= 2 ~waterLevel~0) .cse0 (not (= |old(~waterLevel~0)| 2))) (or .cse1 .cse0 (not (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) .cse2) (or (not (= ~switchedOnBeforeTS~0 0)) .cse3 .cse2 (< 2 |old(~waterLevel~0)|) (not (= 0 ~systemActive~0))) (or .cse1 .cse3 .cse0 .cse2))) [2023-12-02 13:53:21,083 INFO L899 garLoopResultBuilder]: For program point isPumpRunningEXIT(lines 198 206) no Hoare annotation was computed. [2023-12-02 13:53:21,083 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 198 206) the Hoare annotation is: true [2023-12-02 13:53:21,085 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 13:53:21,086 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-12-02 13:53:21,095 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 02.12 01:53:21 BoogieIcfgContainer [2023-12-02 13:53:21,095 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-12-02 13:53:21,095 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-12-02 13:53:21,095 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-12-02 13:53:21,095 INFO L274 PluginConnector]: Witness Printer initialized [2023-12-02 13:53:21,096 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 01:52:43" (3/4) ... [2023-12-02 13:53:21,097 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-12-02 13:53:21,099 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-12-02 13:53:21,099 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-12-02 13:53:21,099 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-12-02 13:53:21,099 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-12-02 13:53:21,100 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-12-02 13:53:21,100 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 13:53:21,100 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-12-02 13:53:21,100 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2023-12-02 13:53:21,107 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 49 nodes and edges [2023-12-02 13:53:21,108 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2023-12-02 13:53:21,109 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-12-02 13:53:21,110 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-12-02 13:53:21,110 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-12-02 13:53:21,225 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/witness.graphml [2023-12-02 13:53:21,226 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/witness.yml [2023-12-02 13:53:21,226 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-12-02 13:53:21,227 INFO L158 Benchmark]: Toolchain (without parser) took 38451.14ms. Allocated memory was 155.2MB in the beginning and 671.1MB in the end (delta: 515.9MB). Free memory was 112.4MB in the beginning and 445.8MB in the end (delta: -333.4MB). Peak memory consumption was 186.0MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,227 INFO L158 Benchmark]: CDTParser took 0.20ms. Allocated memory is still 117.4MB. Free memory is still 72.2MB. There was no memory consumed. Max. memory is 16.1GB. [2023-12-02 13:53:21,227 INFO L158 Benchmark]: CACSL2BoogieTranslator took 424.95ms. Allocated memory is still 155.2MB. Free memory was 112.0MB in the beginning and 92.3MB in the end (delta: 19.7MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,228 INFO L158 Benchmark]: Boogie Procedure Inliner took 49.02ms. Allocated memory is still 155.2MB. Free memory was 92.3MB in the beginning and 89.9MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,228 INFO L158 Benchmark]: Boogie Preprocessor took 31.45ms. Allocated memory is still 155.2MB. Free memory was 89.9MB in the beginning and 88.2MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,228 INFO L158 Benchmark]: RCFGBuilder took 525.99ms. Allocated memory is still 155.2MB. Free memory was 88.2MB in the beginning and 123.3MB in the end (delta: -35.1MB). Peak memory consumption was 33.8MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,229 INFO L158 Benchmark]: TraceAbstraction took 37282.96ms. Allocated memory was 155.2MB in the beginning and 671.1MB in the end (delta: 515.9MB). Free memory was 122.5MB in the beginning and 453.1MB in the end (delta: -330.6MB). Peak memory consumption was 410.1MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,229 INFO L158 Benchmark]: Witness Printer took 130.65ms. Allocated memory is still 671.1MB. Free memory was 453.1MB in the beginning and 445.8MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2023-12-02 13:53:21,231 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.20ms. Allocated memory is still 117.4MB. Free memory is still 72.2MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 424.95ms. Allocated memory is still 155.2MB. Free memory was 112.0MB in the beginning and 92.3MB in the end (delta: 19.7MB). Peak memory consumption was 23.1MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 49.02ms. Allocated memory is still 155.2MB. Free memory was 92.3MB in the beginning and 89.9MB in the end (delta: 2.4MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 31.45ms. Allocated memory is still 155.2MB. Free memory was 89.9MB in the beginning and 88.2MB in the end (delta: 1.7MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 525.99ms. Allocated memory is still 155.2MB. Free memory was 88.2MB in the beginning and 123.3MB in the end (delta: -35.1MB). Peak memory consumption was 33.8MB. Max. memory is 16.1GB. * TraceAbstraction took 37282.96ms. Allocated memory was 155.2MB in the beginning and 671.1MB in the end (delta: 515.9MB). Free memory was 122.5MB in the beginning and 453.1MB in the end (delta: -330.6MB). Peak memory consumption was 410.1MB. Max. memory is 16.1GB. * Witness Printer took 130.65ms. Allocated memory is still 671.1MB. Free memory was 453.1MB in the beginning and 445.8MB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] - GenericResultAtLocation [Line: 304]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [304] - GenericResultAtLocation [Line: 376]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [376] - GenericResultAtLocation [Line: 427]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [427] - GenericResultAtLocation [Line: 793]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [793] - GenericResultAtLocation [Line: 893]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [893] - GenericResultAtLocation [Line: 928]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [928] - GenericResultAtLocation [Line: 937]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [937] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 933]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 9 procedures, 66 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 37.2s, OverallIterations: 10, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 7.8s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 6.0s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2543 SdHoareTripleChecker+Valid, 3.3s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2512 mSDsluCounter, 3977 SdHoareTripleChecker+Invalid, 2.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 3200 mSDsCounter, 1263 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 5123 IncrementalHoareTripleChecker+Invalid, 6386 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1263 mSolverCounterUnsat, 777 mSDtfsCounter, 5123 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 971 GetRequests, 641 SyntacticMatches, 5 SemanticMatches, 325 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 13556 ImplicationChecksByTransitivity, 13.3s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=695occurred in iteration=9, InterpolantAutomatonStates: 209, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.3s AutomataMinimizationTime, 10 MinimizatonAttempts, 234 StatesRemovedByMinimization, 7 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 24 LocationsWithAnnotation, 1854 PreInvPairs, 2304 NumberOfFragments, 1354 HoareAnnotationTreeSize, 1854 FomulaSimplifications, 34545 FormulaSimplificationTreeSizeReduction, 1.6s HoareSimplificationTime, 24 FomulaSimplificationsInter, 27901 FormulaSimplificationTreeSizeReductionInter, 4.3s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 3.1s InterpolantComputationTime, 637 NumberOfCodeBlocks, 637 NumberOfCodeBlocksAsserted, 13 NumberOfCheckSat, 839 ConstructedInterpolants, 0 QuantifiedInterpolants, 2564 SizeOfPredicates, 21 NumberOfNonLiveVariables, 942 ConjunctsInSsa, 57 ConjunctsInUnsatCore, 16 InterpolantComputations, 7 PerfectInterpolantSequences, 281/413 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 318]: Loop Invariant Derived loop invariant: (((((((2 == waterLevel) && (1 == systemActive)) && (splverifierCounter == 0)) && (tmp == 1)) || (((((waterLevel <= 1) && (1 == systemActive)) && (splverifierCounter == 0)) && (tmp == 1)) && (pumpRunning == switchedOnBeforeTS))) || ((((((pumpRunning == 0) && (splverifierCounter == 0)) && (waterLevel <= 2)) && (0 == systemActive)) && (tmp == 1)) && (switchedOnBeforeTS == 0))) || (((((pumpRunning == 0) && (waterLevel <= 1)) && (1 == systemActive)) && (splverifierCounter == 0)) && (tmp == 1))) - InvariantResult [Line: 317]: Loop Invariant Derived loop invariant: 0 - InvariantResult [Line: 805]: Loop Invariant Derived loop invariant: 1 RESULT: Ultimate proved your program to be correct! [2023-12-02 13:53:21,248 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_789eecbb-c550-4992-8188-0e304cfee1b2/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE