./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product62.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 0e0057cc Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product62.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 34b47c00ac265c7154b048b065075686f0b0d02157935b615817b802464c404c --- Real Ultimate output --- This is Ultimate 0.2.4-dev-0e0057c [2023-12-02 20:01:28,953 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-12-02 20:01:29,035 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/config/svcomp-Reach-32bit-Taipan_Default.epf [2023-12-02 20:01:29,039 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-12-02 20:01:29,040 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-12-02 20:01:29,064 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-12-02 20:01:29,065 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-12-02 20:01:29,065 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-12-02 20:01:29,066 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-12-02 20:01:29,066 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-12-02 20:01:29,067 INFO L153 SettingsManager]: * User list type=DISABLED [2023-12-02 20:01:29,067 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2023-12-02 20:01:29,068 INFO L153 SettingsManager]: * Explicit value domain=true [2023-12-02 20:01:29,068 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2023-12-02 20:01:29,069 INFO L153 SettingsManager]: * Octagon Domain=false [2023-12-02 20:01:29,069 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2023-12-02 20:01:29,070 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2023-12-02 20:01:29,070 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2023-12-02 20:01:29,071 INFO L153 SettingsManager]: * Interval Domain=false [2023-12-02 20:01:29,071 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2023-12-02 20:01:29,072 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2023-12-02 20:01:29,072 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2023-12-02 20:01:29,073 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-12-02 20:01:29,073 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-12-02 20:01:29,074 INFO L153 SettingsManager]: * sizeof long=4 [2023-12-02 20:01:29,074 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-12-02 20:01:29,074 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-12-02 20:01:29,075 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-12-02 20:01:29,075 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-12-02 20:01:29,075 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-12-02 20:01:29,076 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-12-02 20:01:29,076 INFO L153 SettingsManager]: * sizeof long double=12 [2023-12-02 20:01:29,076 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-12-02 20:01:29,076 INFO L153 SettingsManager]: * Use constant arrays=true [2023-12-02 20:01:29,077 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-12-02 20:01:29,077 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2023-12-02 20:01:29,077 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-12-02 20:01:29,077 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-12-02 20:01:29,077 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-12-02 20:01:29,078 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-12-02 20:01:29,078 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2023-12-02 20:01:29,078 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2023-12-02 20:01:29,078 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-12-02 20:01:29,079 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2023-12-02 20:01:29,079 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-12-02 20:01:29,079 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2023-12-02 20:01:29,079 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-12-02 20:01:29,079 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 34b47c00ac265c7154b048b065075686f0b0d02157935b615817b802464c404c [2023-12-02 20:01:29,310 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-12-02 20:01:29,330 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-12-02 20:01:29,333 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-12-02 20:01:29,334 INFO L270 PluginConnector]: Initializing CDTParser... [2023-12-02 20:01:29,334 INFO L274 PluginConnector]: CDTParser initialized [2023-12-02 20:01:29,336 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/../../sv-benchmarks/c/product-lines/minepump_spec5_product62.cil.c [2023-12-02 20:01:32,021 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-12-02 20:01:32,261 INFO L384 CDTParser]: Found 1 translation units. [2023-12-02 20:01:32,262 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/sv-benchmarks/c/product-lines/minepump_spec5_product62.cil.c [2023-12-02 20:01:32,279 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/data/4278294ba/9ec8d219af4b4f20a639b74f4531d339/FLAG6a149a204 [2023-12-02 20:01:32,292 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/data/4278294ba/9ec8d219af4b4f20a639b74f4531d339 [2023-12-02 20:01:32,294 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-12-02 20:01:32,295 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-12-02 20:01:32,296 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-12-02 20:01:32,297 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-12-02 20:01:32,302 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-12-02 20:01:32,303 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,304 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@57d46208 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32, skipping insertion in model container [2023-12-02 20:01:32,304 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,359 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-12-02 20:01:32,651 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/sv-benchmarks/c/product-lines/minepump_spec5_product62.cil.c[19180,19193] [2023-12-02 20:01:32,659 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-12-02 20:01:32,671 INFO L202 MainTranslator]: Completed pre-run [2023-12-02 20:01:32,682 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] [2023-12-02 20:01:32,684 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [313] [2023-12-02 20:01:32,684 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [364] [2023-12-02 20:01:32,685 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [434] [2023-12-02 20:01:32,685 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [800] [2023-12-02 20:01:32,685 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [903] [2023-12-02 20:01:32,685 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [1003] [2023-12-02 20:01:32,686 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [1012] [2023-12-02 20:01:32,740 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/sv-benchmarks/c/product-lines/minepump_spec5_product62.cil.c[19180,19193] [2023-12-02 20:01:32,742 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-12-02 20:01:32,762 INFO L206 MainTranslator]: Completed translation [2023-12-02 20:01:32,763 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32 WrapperNode [2023-12-02 20:01:32,763 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-12-02 20:01:32,764 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-12-02 20:01:32,764 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-12-02 20:01:32,765 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-12-02 20:01:32,772 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,787 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,810 INFO L138 Inliner]: procedures = 60, calls = 108, calls flagged for inlining = 26, calls inlined = 23, statements flattened = 244 [2023-12-02 20:01:32,811 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-12-02 20:01:32,812 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-12-02 20:01:32,812 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-12-02 20:01:32,812 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-12-02 20:01:32,822 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,822 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,825 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,825 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,831 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,836 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,838 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,839 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,843 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-12-02 20:01:32,843 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-12-02 20:01:32,844 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-12-02 20:01:32,844 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-12-02 20:01:32,844 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (1/1) ... [2023-12-02 20:01:32,850 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-12-02 20:01:32,864 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:32,876 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-12-02 20:01:32,878 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-12-02 20:01:32,906 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-12-02 20:01:32,907 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-12-02 20:01:32,907 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-12-02 20:01:32,907 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-12-02 20:01:32,907 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-12-02 20:01:32,907 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-12-02 20:01:32,907 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-12-02 20:01:32,908 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 20:01:32,908 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 20:01:32,908 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-12-02 20:01:32,908 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-12-02 20:01:32,908 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__methaneQuery [2023-12-02 20:01:32,908 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__methaneQuery [2023-12-02 20:01:32,909 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2023-12-02 20:01:32,909 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2023-12-02 20:01:32,909 INFO L130 BoogieDeclarations]: Found specification of procedure isMethaneAlarm [2023-12-02 20:01:32,909 INFO L138 BoogieDeclarations]: Found implementation of procedure isMethaneAlarm [2023-12-02 20:01:32,909 INFO L130 BoogieDeclarations]: Found specification of procedure deactivatePump [2023-12-02 20:01:32,909 INFO L138 BoogieDeclarations]: Found implementation of procedure deactivatePump [2023-12-02 20:01:32,910 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-12-02 20:01:32,910 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-12-02 20:01:32,910 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-12-02 20:01:32,910 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-12-02 20:01:32,910 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-12-02 20:01:32,987 INFO L241 CfgBuilder]: Building ICFG [2023-12-02 20:01:32,990 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2023-12-02 20:01:33,242 INFO L282 CfgBuilder]: Performing block encoding [2023-12-02 20:01:33,354 INFO L304 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-12-02 20:01:33,354 INFO L309 CfgBuilder]: Removed 2 assume(true) statements. [2023-12-02 20:01:33,356 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 08:01:33 BoogieIcfgContainer [2023-12-02 20:01:33,356 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-12-02 20:01:33,359 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-12-02 20:01:33,359 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-12-02 20:01:33,362 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-12-02 20:01:33,363 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 02.12 08:01:32" (1/3) ... [2023-12-02 20:01:33,363 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7e1093e1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.12 08:01:33, skipping insertion in model container [2023-12-02 20:01:33,364 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 02.12 08:01:32" (2/3) ... [2023-12-02 20:01:33,364 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@7e1093e1 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 02.12 08:01:33, skipping insertion in model container [2023-12-02 20:01:33,364 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 08:01:33" (3/3) ... [2023-12-02 20:01:33,365 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product62.cil.c [2023-12-02 20:01:33,380 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-12-02 20:01:33,381 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-12-02 20:01:33,418 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-12-02 20:01:33,423 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@5ebb77c3, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2023-12-02 20:01:33,424 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-12-02 20:01:33,427 INFO L276 IsEmpty]: Start isEmpty. Operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) [2023-12-02 20:01:33,435 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2023-12-02 20:01:33,435 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:33,436 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:33,436 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:33,440 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:33,440 INFO L85 PathProgramCache]: Analyzing trace with hash -184589084, now seen corresponding path program 1 times [2023-12-02 20:01:33,447 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:33,447 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1796961886] [2023-12-02 20:01:33,448 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:33,448 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:33,542 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:33,606 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 20:01:33,606 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:33,607 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1796961886] [2023-12-02 20:01:33,607 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1796961886] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:33,608 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:01:33,608 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-12-02 20:01:33,609 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1537613888] [2023-12-02 20:01:33,610 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:33,615 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-12-02 20:01:33,615 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:33,640 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-12-02 20:01:33,641 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-12-02 20:01:33,643 INFO L87 Difference]: Start difference. First operand has 75 states, 45 states have (on average 1.4) internal successors, (63), 55 states have internal predecessors, (63), 18 states have call successors, (18), 10 states have call predecessors, (18), 10 states have return successors, (18), 13 states have call predecessors, (18), 18 states have call successors, (18) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 20:01:33,704 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:33,705 INFO L93 Difference]: Finished difference Result 148 states and 199 transitions. [2023-12-02 20:01:33,706 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-12-02 20:01:33,707 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2023-12-02 20:01:33,707 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:33,716 INFO L225 Difference]: With dead ends: 148 [2023-12-02 20:01:33,717 INFO L226 Difference]: Without dead ends: 70 [2023-12-02 20:01:33,721 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-12-02 20:01:33,724 INFO L413 NwaCegarLoop]: 78 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 18 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 78 SdHoareTripleChecker+Invalid, 19 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 18 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:33,725 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 78 Invalid, 19 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 18 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:01:33,739 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 70 states. [2023-12-02 20:01:33,758 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 70 to 70. [2023-12-02 20:01:33,759 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 70 states, 42 states have (on average 1.3095238095238095) internal successors, (55), 51 states have internal predecessors, (55), 18 states have call successors, (18), 10 states have call predecessors, (18), 9 states have return successors, (17), 12 states have call predecessors, (17), 17 states have call successors, (17) [2023-12-02 20:01:33,762 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 70 states to 70 states and 90 transitions. [2023-12-02 20:01:33,763 INFO L78 Accepts]: Start accepts. Automaton has 70 states and 90 transitions. Word has length 21 [2023-12-02 20:01:33,763 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:33,764 INFO L495 AbstractCegarLoop]: Abstraction has 70 states and 90 transitions. [2023-12-02 20:01:33,764 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 20:01:33,764 INFO L276 IsEmpty]: Start isEmpty. Operand 70 states and 90 transitions. [2023-12-02 20:01:33,766 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2023-12-02 20:01:33,767 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:33,767 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:33,767 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-12-02 20:01:33,767 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:33,768 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:33,768 INFO L85 PathProgramCache]: Analyzing trace with hash -1035691065, now seen corresponding path program 1 times [2023-12-02 20:01:33,769 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:33,769 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1884661568] [2023-12-02 20:01:33,769 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:33,769 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:33,798 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:34,014 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 1 proven. 0 refuted. 0 times theorem prover too weak. 1 trivial. 0 not checked. [2023-12-02 20:01:34,014 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:34,015 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1884661568] [2023-12-02 20:01:34,015 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1884661568] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:34,015 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:01:34,015 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-12-02 20:01:34,016 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [520325650] [2023-12-02 20:01:34,016 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:34,017 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-12-02 20:01:34,017 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:34,018 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-12-02 20:01:34,019 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=9, Invalid=21, Unknown=0, NotChecked=0, Total=30 [2023-12-02 20:01:34,019 INFO L87 Difference]: Start difference. First operand 70 states and 90 transitions. Second operand has 6 states, 5 states have (on average 3.8) internal successors, (19), 5 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 20:01:34,232 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:34,233 INFO L93 Difference]: Finished difference Result 188 states and 255 transitions. [2023-12-02 20:01:34,233 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2023-12-02 20:01:34,233 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 5 states have (on average 3.8) internal successors, (19), 5 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) Word has length 24 [2023-12-02 20:01:34,234 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:34,237 INFO L225 Difference]: With dead ends: 188 [2023-12-02 20:01:34,237 INFO L226 Difference]: Without dead ends: 120 [2023-12-02 20:01:34,239 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 10 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 7 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=21, Invalid=51, Unknown=0, NotChecked=0, Total=72 [2023-12-02 20:01:34,240 INFO L413 NwaCegarLoop]: 77 mSDtfsCounter, 54 mSDsluCounter, 253 mSDsCounter, 0 mSdLazyCounter, 137 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 55 SdHoareTripleChecker+Valid, 330 SdHoareTripleChecker+Invalid, 145 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 137 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:34,241 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [55 Valid, 330 Invalid, 145 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 137 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-12-02 20:01:34,242 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 120 states. [2023-12-02 20:01:34,262 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 120 to 118. [2023-12-02 20:01:34,262 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 118 states, 74 states have (on average 1.2432432432432432) internal successors, (92), 82 states have internal predecessors, (92), 26 states have call successors, (26), 19 states have call predecessors, (26), 17 states have return successors, (34), 22 states have call predecessors, (34), 24 states have call successors, (34) [2023-12-02 20:01:34,265 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 118 states to 118 states and 152 transitions. [2023-12-02 20:01:34,266 INFO L78 Accepts]: Start accepts. Automaton has 118 states and 152 transitions. Word has length 24 [2023-12-02 20:01:34,266 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:34,266 INFO L495 AbstractCegarLoop]: Abstraction has 118 states and 152 transitions. [2023-12-02 20:01:34,267 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 5 states have (on average 3.8) internal successors, (19), 5 states have internal predecessors, (19), 1 states have call successors, (3), 2 states have call predecessors, (3), 2 states have return successors, (2), 2 states have call predecessors, (2), 1 states have call successors, (2) [2023-12-02 20:01:34,267 INFO L276 IsEmpty]: Start isEmpty. Operand 118 states and 152 transitions. [2023-12-02 20:01:34,269 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 40 [2023-12-02 20:01:34,269 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:34,269 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:34,270 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-12-02 20:01:34,270 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:34,270 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:34,271 INFO L85 PathProgramCache]: Analyzing trace with hash 1532594447, now seen corresponding path program 1 times [2023-12-02 20:01:34,271 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:34,271 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1275145965] [2023-12-02 20:01:34,271 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:34,272 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:34,289 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:34,349 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 20:01:34,349 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:34,349 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1275145965] [2023-12-02 20:01:34,350 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1275145965] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:34,350 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:01:34,350 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2023-12-02 20:01:34,350 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1248375497] [2023-12-02 20:01:34,351 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:34,351 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2023-12-02 20:01:34,351 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:34,352 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2023-12-02 20:01:34,352 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 20:01:34,353 INFO L87 Difference]: Start difference. First operand 118 states and 152 transitions. Second operand has 3 states, 3 states have (on average 8.666666666666666) internal successors, (26), 3 states have internal predecessors, (26), 2 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2023-12-02 20:01:34,394 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:34,394 INFO L93 Difference]: Finished difference Result 192 states and 242 transitions. [2023-12-02 20:01:34,395 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2023-12-02 20:01:34,395 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 3 states have (on average 8.666666666666666) internal successors, (26), 3 states have internal predecessors, (26), 2 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 39 [2023-12-02 20:01:34,395 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:34,397 INFO L225 Difference]: With dead ends: 192 [2023-12-02 20:01:34,397 INFO L226 Difference]: Without dead ends: 102 [2023-12-02 20:01:34,398 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 3 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2023-12-02 20:01:34,400 INFO L413 NwaCegarLoop]: 64 mSDtfsCounter, 7 mSDsluCounter, 55 mSDsCounter, 0 mSdLazyCounter, 27 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.0s Time, 0 mProtectedPredicate, 0 mProtectedAction, 10 SdHoareTripleChecker+Valid, 119 SdHoareTripleChecker+Invalid, 27 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 27 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:34,400 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [10 Valid, 119 Invalid, 27 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 27 Invalid, 0 Unknown, 0 Unchecked, 0.0s Time] [2023-12-02 20:01:34,401 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 102 states. [2023-12-02 20:01:34,413 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 102 to 102. [2023-12-02 20:01:34,414 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 102 states, 64 states have (on average 1.25) internal successors, (80), 72 states have internal predecessors, (80), 20 states have call successors, (20), 17 states have call predecessors, (20), 17 states have return successors, (26), 18 states have call predecessors, (26), 20 states have call successors, (26) [2023-12-02 20:01:34,415 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 102 states to 102 states and 126 transitions. [2023-12-02 20:01:34,416 INFO L78 Accepts]: Start accepts. Automaton has 102 states and 126 transitions. Word has length 39 [2023-12-02 20:01:34,416 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:34,416 INFO L495 AbstractCegarLoop]: Abstraction has 102 states and 126 transitions. [2023-12-02 20:01:34,416 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 3 states have (on average 8.666666666666666) internal successors, (26), 3 states have internal predecessors, (26), 2 states have call successors, (7), 2 states have call predecessors, (7), 1 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2023-12-02 20:01:34,416 INFO L276 IsEmpty]: Start isEmpty. Operand 102 states and 126 transitions. [2023-12-02 20:01:34,418 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 42 [2023-12-02 20:01:34,418 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:34,418 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:34,418 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-12-02 20:01:34,418 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:34,419 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:34,419 INFO L85 PathProgramCache]: Analyzing trace with hash 1929395840, now seen corresponding path program 1 times [2023-12-02 20:01:34,419 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:34,419 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [287964398] [2023-12-02 20:01:34,420 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:34,420 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:34,440 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:34,706 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 20:01:34,707 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:34,707 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [287964398] [2023-12-02 20:01:34,707 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [287964398] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:34,707 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:01:34,708 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [6] imperfect sequences [] total 6 [2023-12-02 20:01:34,708 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1230903125] [2023-12-02 20:01:34,708 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:34,708 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 6 states [2023-12-02 20:01:34,709 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:34,709 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 6 interpolants. [2023-12-02 20:01:34,709 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=11, Invalid=19, Unknown=0, NotChecked=0, Total=30 [2023-12-02 20:01:34,710 INFO L87 Difference]: Start difference. First operand 102 states and 126 transitions. Second operand has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2023-12-02 20:01:34,949 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:34,949 INFO L93 Difference]: Finished difference Result 289 states and 357 transitions. [2023-12-02 20:01:34,949 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2023-12-02 20:01:34,950 INFO L78 Accepts]: Start accepts. Automaton has has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 41 [2023-12-02 20:01:34,950 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:34,952 INFO L225 Difference]: With dead ends: 289 [2023-12-02 20:01:34,953 INFO L226 Difference]: Without dead ends: 189 [2023-12-02 20:01:34,954 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 8 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 5 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 2 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=16, Invalid=26, Unknown=0, NotChecked=0, Total=42 [2023-12-02 20:01:34,955 INFO L413 NwaCegarLoop]: 92 mSDtfsCounter, 119 mSDsluCounter, 108 mSDsCounter, 0 mSdLazyCounter, 103 mSolverCounterSat, 38 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 200 SdHoareTripleChecker+Invalid, 141 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 38 IncrementalHoareTripleChecker+Valid, 103 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:34,956 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 200 Invalid, 141 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [38 Valid, 103 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2023-12-02 20:01:34,957 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 189 states. [2023-12-02 20:01:34,981 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 189 to 185. [2023-12-02 20:01:34,982 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 185 states, 116 states have (on average 1.2241379310344827) internal successors, (142), 129 states have internal predecessors, (142), 36 states have call successors, (36), 31 states have call predecessors, (36), 32 states have return successors, (48), 33 states have call predecessors, (48), 36 states have call successors, (48) [2023-12-02 20:01:34,984 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 185 states to 185 states and 226 transitions. [2023-12-02 20:01:34,985 INFO L78 Accepts]: Start accepts. Automaton has 185 states and 226 transitions. Word has length 41 [2023-12-02 20:01:34,985 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:34,985 INFO L495 AbstractCegarLoop]: Abstraction has 185 states and 226 transitions. [2023-12-02 20:01:34,985 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 6 states, 6 states have (on average 4.833333333333333) internal successors, (29), 6 states have internal predecessors, (29), 5 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2023-12-02 20:01:34,986 INFO L276 IsEmpty]: Start isEmpty. Operand 185 states and 226 transitions. [2023-12-02 20:01:34,987 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 45 [2023-12-02 20:01:34,988 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:34,988 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:34,988 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-12-02 20:01:34,988 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:34,989 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:34,989 INFO L85 PathProgramCache]: Analyzing trace with hash 193665451, now seen corresponding path program 1 times [2023-12-02 20:01:34,989 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:34,989 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1878469379] [2023-12-02 20:01:34,989 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:34,990 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:35,004 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:35,217 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-12-02 20:01:35,217 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:35,217 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1878469379] [2023-12-02 20:01:35,218 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1878469379] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:35,218 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:01:35,218 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2023-12-02 20:01:35,218 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [712707651] [2023-12-02 20:01:35,218 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:35,219 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2023-12-02 20:01:35,219 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:35,219 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2023-12-02 20:01:35,220 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=17, Invalid=39, Unknown=0, NotChecked=0, Total=56 [2023-12-02 20:01:35,220 INFO L87 Difference]: Start difference. First operand 185 states and 226 transitions. Second operand has 8 states, 7 states have (on average 4.285714285714286) internal successors, (30), 7 states have internal predecessors, (30), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2023-12-02 20:01:35,698 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:35,698 INFO L93 Difference]: Finished difference Result 428 states and 533 transitions. [2023-12-02 20:01:35,698 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2023-12-02 20:01:35,699 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 4.285714285714286) internal successors, (30), 7 states have internal predecessors, (30), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) Word has length 44 [2023-12-02 20:01:35,699 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:35,702 INFO L225 Difference]: With dead ends: 428 [2023-12-02 20:01:35,702 INFO L226 Difference]: Without dead ends: 298 [2023-12-02 20:01:35,703 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 18 GetRequests, 5 SyntacticMatches, 0 SemanticMatches, 13 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 30 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=67, Invalid=143, Unknown=0, NotChecked=0, Total=210 [2023-12-02 20:01:35,704 INFO L413 NwaCegarLoop]: 65 mSDtfsCounter, 231 mSDsluCounter, 164 mSDsCounter, 0 mSdLazyCounter, 329 mSolverCounterSat, 103 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 240 SdHoareTripleChecker+Valid, 229 SdHoareTripleChecker+Invalid, 432 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 103 IncrementalHoareTripleChecker+Valid, 329 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:35,705 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [240 Valid, 229 Invalid, 432 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [103 Valid, 329 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2023-12-02 20:01:35,706 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 298 states. [2023-12-02 20:01:35,737 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 298 to 275. [2023-12-02 20:01:35,738 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 275 states, 177 states have (on average 1.231638418079096) internal successors, (218), 195 states have internal predecessors, (218), 51 states have call successors, (51), 39 states have call predecessors, (51), 46 states have return successors, (70), 52 states have call predecessors, (70), 51 states have call successors, (70) [2023-12-02 20:01:35,740 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 275 states to 275 states and 339 transitions. [2023-12-02 20:01:35,741 INFO L78 Accepts]: Start accepts. Automaton has 275 states and 339 transitions. Word has length 44 [2023-12-02 20:01:35,741 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:35,741 INFO L495 AbstractCegarLoop]: Abstraction has 275 states and 339 transitions. [2023-12-02 20:01:35,742 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 4.285714285714286) internal successors, (30), 7 states have internal predecessors, (30), 5 states have call successors, (7), 3 states have call predecessors, (7), 2 states have return successors, (6), 4 states have call predecessors, (6), 5 states have call successors, (6) [2023-12-02 20:01:35,742 INFO L276 IsEmpty]: Start isEmpty. Operand 275 states and 339 transitions. [2023-12-02 20:01:35,744 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 62 [2023-12-02 20:01:35,744 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:35,744 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:35,744 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4 [2023-12-02 20:01:35,745 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:35,745 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:35,745 INFO L85 PathProgramCache]: Analyzing trace with hash 652328349, now seen corresponding path program 1 times [2023-12-02 20:01:35,745 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:35,745 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [510750495] [2023-12-02 20:01:35,746 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:35,746 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:35,764 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:35,896 INFO L134 CoverageAnalysis]: Checked inductivity of 19 backedges. 6 proven. 0 refuted. 0 times theorem prover too weak. 13 trivial. 0 not checked. [2023-12-02 20:01:35,897 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:35,897 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [510750495] [2023-12-02 20:01:35,897 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [510750495] provided 1 perfect and 0 imperfect interpolant sequences [2023-12-02 20:01:35,897 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-12-02 20:01:35,898 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2023-12-02 20:01:35,898 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1292387817] [2023-12-02 20:01:35,898 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-12-02 20:01:35,898 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2023-12-02 20:01:35,898 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:35,899 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2023-12-02 20:01:35,899 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2023-12-02 20:01:35,899 INFO L87 Difference]: Start difference. First operand 275 states and 339 transitions. Second operand has 8 states, 7 states have (on average 5.285714285714286) internal successors, (37), 6 states have internal predecessors, (37), 2 states have call successors, (7), 1 states have call predecessors, (7), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2023-12-02 20:01:36,356 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:36,357 INFO L93 Difference]: Finished difference Result 554 states and 709 transitions. [2023-12-02 20:01:36,357 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2023-12-02 20:01:36,357 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 5.285714285714286) internal successors, (37), 6 states have internal predecessors, (37), 2 states have call successors, (7), 1 states have call predecessors, (7), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 61 [2023-12-02 20:01:36,358 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:36,361 INFO L225 Difference]: With dead ends: 554 [2023-12-02 20:01:36,361 INFO L226 Difference]: Without dead ends: 405 [2023-12-02 20:01:36,363 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 21 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 46 ImplicationChecksByTransitivity, 0.1s TimeCoverageRelationStatistics Valid=71, Invalid=271, Unknown=0, NotChecked=0, Total=342 [2023-12-02 20:01:36,364 INFO L413 NwaCegarLoop]: 103 mSDtfsCounter, 118 mSDsluCounter, 308 mSDsCounter, 0 mSdLazyCounter, 471 mSolverCounterSat, 36 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 122 SdHoareTripleChecker+Valid, 411 SdHoareTripleChecker+Invalid, 507 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 36 IncrementalHoareTripleChecker+Valid, 471 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.3s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:36,364 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [122 Valid, 411 Invalid, 507 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [36 Valid, 471 Invalid, 0 Unknown, 0 Unchecked, 0.3s Time] [2023-12-02 20:01:36,365 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 405 states. [2023-12-02 20:01:36,402 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 405 to 379. [2023-12-02 20:01:36,404 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 379 states, 244 states have (on average 1.2049180327868851) internal successors, (294), 272 states have internal predecessors, (294), 70 states have call successors, (70), 54 states have call predecessors, (70), 64 states have return successors, (103), 70 states have call predecessors, (103), 70 states have call successors, (103) [2023-12-02 20:01:36,407 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 379 states to 379 states and 467 transitions. [2023-12-02 20:01:36,407 INFO L78 Accepts]: Start accepts. Automaton has 379 states and 467 transitions. Word has length 61 [2023-12-02 20:01:36,408 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:36,408 INFO L495 AbstractCegarLoop]: Abstraction has 379 states and 467 transitions. [2023-12-02 20:01:36,408 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 5.285714285714286) internal successors, (37), 6 states have internal predecessors, (37), 2 states have call successors, (7), 1 states have call predecessors, (7), 2 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2023-12-02 20:01:36,408 INFO L276 IsEmpty]: Start isEmpty. Operand 379 states and 467 transitions. [2023-12-02 20:01:36,410 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 79 [2023-12-02 20:01:36,410 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:36,411 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:36,411 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5 [2023-12-02 20:01:36,411 INFO L420 AbstractCegarLoop]: === Iteration 7 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:36,411 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:36,412 INFO L85 PathProgramCache]: Analyzing trace with hash 1545356138, now seen corresponding path program 1 times [2023-12-02 20:01:36,412 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:36,412 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [852315282] [2023-12-02 20:01:36,412 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:36,412 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:36,431 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:36,609 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 9 proven. 13 refuted. 0 times theorem prover too weak. 14 trivial. 0 not checked. [2023-12-02 20:01:36,610 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:36,610 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [852315282] [2023-12-02 20:01:36,610 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [852315282] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:36,610 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1256413059] [2023-12-02 20:01:36,610 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:36,610 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:36,611 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:36,615 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:36,616 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2023-12-02 20:01:36,722 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:36,725 INFO L262 TraceCheckSpWp]: Trace formula consists of 316 conjuncts, 18 conjunts are in the unsatisfiable core [2023-12-02 20:01:36,734 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:36,879 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 35 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-12-02 20:01:36,880 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 20:01:37,021 INFO L134 CoverageAnalysis]: Checked inductivity of 36 backedges. 15 proven. 1 refuted. 0 times theorem prover too weak. 20 trivial. 0 not checked. [2023-12-02 20:01:37,022 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1256413059] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 20:01:37,022 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1439273597] [2023-12-02 20:01:37,045 INFO L159 IcfgInterpreter]: Started Sifa with 45 locations of interest [2023-12-02 20:01:37,046 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 20:01:37,050 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 20:01:37,055 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 20:01:37,056 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 20:01:45,696 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 51 for LOIs [2023-12-02 20:01:45,708 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 18 for LOIs [2023-12-02 20:01:45,890 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 39 for LOIs [2023-12-02 20:01:45,899 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 17 for LOIs [2023-12-02 20:01:45,923 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 17 for LOIs [2023-12-02 20:01:45,984 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 18 for LOIs [2023-12-02 20:01:45,986 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 20:01:49,775 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4651#(and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2147483647) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2)) (exists ((|v_processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret7#1_42| Int)) (and (= |v_processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret7#1_42| 0) (= ~pumpRunning~0 1))) (= |old(~pumpRunning~0)| 0) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1|) (= |old(~waterLevel~0)| ~waterLevel~0) (<= 2 |timeShift_getWaterLevel_#res#1|) (<= ~methaneLevelCritical~0 2147483647) (<= 0 (+ ~methaneLevelCritical~0 2147483648)) (= ~switchedOnBeforeTS~0 0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| |timeShift_getWaterLevel_#res#1|) (not (= 0 ~systemActive~0)) (= |old(~switchedOnBeforeTS~0)| 0))' at error location [2023-12-02 20:01:49,776 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 20:01:49,776 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 20:01:49,776 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 6, 6] total 13 [2023-12-02 20:01:49,776 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [932523419] [2023-12-02 20:01:49,776 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 20:01:49,777 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 13 states [2023-12-02 20:01:49,777 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:01:49,778 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 13 interpolants. [2023-12-02 20:01:49,779 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=203, Invalid=1867, Unknown=0, NotChecked=0, Total=2070 [2023-12-02 20:01:49,780 INFO L87 Difference]: Start difference. First operand 379 states and 467 transitions. Second operand has 13 states, 12 states have (on average 7.416666666666667) internal successors, (89), 12 states have internal predecessors, (89), 5 states have call successors, (20), 4 states have call predecessors, (20), 5 states have return successors, (21), 7 states have call predecessors, (21), 5 states have call successors, (21) [2023-12-02 20:01:51,852 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:01:51,852 INFO L93 Difference]: Finished difference Result 3189 states and 4285 transitions. [2023-12-02 20:01:51,853 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 63 states. [2023-12-02 20:01:51,853 INFO L78 Accepts]: Start accepts. Automaton has has 13 states, 12 states have (on average 7.416666666666667) internal successors, (89), 12 states have internal predecessors, (89), 5 states have call successors, (20), 4 states have call predecessors, (20), 5 states have return successors, (21), 7 states have call predecessors, (21), 5 states have call successors, (21) Word has length 78 [2023-12-02 20:01:51,853 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:01:51,874 INFO L225 Difference]: With dead ends: 3189 [2023-12-02 20:01:51,874 INFO L226 Difference]: Without dead ends: 2750 [2023-12-02 20:01:51,883 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 306 GetRequests, 210 SyntacticMatches, 0 SemanticMatches, 96 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3179 ImplicationChecksByTransitivity, 4.7s TimeCoverageRelationStatistics Valid=796, Invalid=8710, Unknown=0, NotChecked=0, Total=9506 [2023-12-02 20:01:51,884 INFO L413 NwaCegarLoop]: 232 mSDtfsCounter, 661 mSDsluCounter, 1236 mSDsCounter, 0 mSdLazyCounter, 1535 mSolverCounterSat, 307 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 668 SdHoareTripleChecker+Valid, 1468 SdHoareTripleChecker+Invalid, 1842 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 307 IncrementalHoareTripleChecker+Valid, 1535 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2023-12-02 20:01:51,885 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [668 Valid, 1468 Invalid, 1842 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [307 Valid, 1535 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2023-12-02 20:01:51,888 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 2750 states. [2023-12-02 20:01:52,120 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 2750 to 2381. [2023-12-02 20:01:52,125 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 2381 states, 1558 states have (on average 1.1983311938382541) internal successors, (1867), 1701 states have internal predecessors, (1867), 430 states have call successors, (430), 364 states have call predecessors, (430), 392 states have return successors, (746), 409 states have call predecessors, (746), 430 states have call successors, (746) [2023-12-02 20:01:52,144 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 2381 states to 2381 states and 3043 transitions. [2023-12-02 20:01:52,146 INFO L78 Accepts]: Start accepts. Automaton has 2381 states and 3043 transitions. Word has length 78 [2023-12-02 20:01:52,146 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:01:52,146 INFO L495 AbstractCegarLoop]: Abstraction has 2381 states and 3043 transitions. [2023-12-02 20:01:52,146 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 13 states, 12 states have (on average 7.416666666666667) internal successors, (89), 12 states have internal predecessors, (89), 5 states have call successors, (20), 4 states have call predecessors, (20), 5 states have return successors, (21), 7 states have call predecessors, (21), 5 states have call successors, (21) [2023-12-02 20:01:52,147 INFO L276 IsEmpty]: Start isEmpty. Operand 2381 states and 3043 transitions. [2023-12-02 20:01:52,158 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 111 [2023-12-02 20:01:52,158 INFO L187 NwaCegarLoop]: Found error trace [2023-12-02 20:01:52,158 INFO L195 NwaCegarLoop]: trace histogram [5, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:01:52,171 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2023-12-02 20:01:52,359 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:52,359 INFO L420 AbstractCegarLoop]: === Iteration 8 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-12-02 20:01:52,360 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-12-02 20:01:52,360 INFO L85 PathProgramCache]: Analyzing trace with hash -596415864, now seen corresponding path program 1 times [2023-12-02 20:01:52,360 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-12-02 20:01:52,360 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [888196014] [2023-12-02 20:01:52,360 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:52,360 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-12-02 20:01:52,381 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:52,520 INFO L134 CoverageAnalysis]: Checked inductivity of 89 backedges. 40 proven. 1 refuted. 0 times theorem prover too weak. 48 trivial. 0 not checked. [2023-12-02 20:01:52,521 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-12-02 20:01:52,521 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [888196014] [2023-12-02 20:01:52,521 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [888196014] provided 0 perfect and 1 imperfect interpolant sequences [2023-12-02 20:01:52,521 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [554051325] [2023-12-02 20:01:52,521 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-12-02 20:01:52,521 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:01:52,521 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 [2023-12-02 20:01:52,523 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-12-02 20:01:52,527 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2023-12-02 20:01:52,636 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-12-02 20:01:52,639 INFO L262 TraceCheckSpWp]: Trace formula consists of 410 conjuncts, 28 conjunts are in the unsatisfiable core [2023-12-02 20:01:52,646 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-12-02 20:01:53,015 INFO L134 CoverageAnalysis]: Checked inductivity of 89 backedges. 66 proven. 15 refuted. 0 times theorem prover too weak. 8 trivial. 0 not checked. [2023-12-02 20:01:53,015 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-12-02 20:01:53,734 INFO L134 CoverageAnalysis]: Checked inductivity of 89 backedges. 53 proven. 5 refuted. 0 times theorem prover too weak. 31 trivial. 0 not checked. [2023-12-02 20:01:53,734 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [554051325] provided 0 perfect and 2 imperfect interpolant sequences [2023-12-02 20:01:53,734 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1358466854] [2023-12-02 20:01:53,738 INFO L159 IcfgInterpreter]: Started Sifa with 51 locations of interest [2023-12-02 20:01:53,738 INFO L166 IcfgInterpreter]: Building call graph [2023-12-02 20:01:53,738 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-12-02 20:01:53,738 INFO L176 IcfgInterpreter]: Starting interpretation [2023-12-02 20:01:53,739 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-12-02 20:01:56,459 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 36 for LOIs [2023-12-02 20:01:56,464 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 33 for LOIs [2023-12-02 20:01:57,200 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 16 for LOIs [2023-12-02 20:01:57,202 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__methaneQuery with input of size 22 for LOIs [2023-12-02 20:01:57,234 INFO L197 IcfgInterpreter]: Interpreting procedure processEnvironment__wrappee__highWaterSensor with input of size 22 for LOIs [2023-12-02 20:01:57,312 INFO L197 IcfgInterpreter]: Interpreting procedure isMethaneAlarm with input of size 59 for LOIs [2023-12-02 20:01:57,338 INFO L180 IcfgInterpreter]: Interpretation finished [2023-12-02 20:02:02,191 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13145#(and (<= |old(~waterLevel~0)| 2147483647) (<= 1 |#StackHeapBarrier|) (or (and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2)) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1|) (exists ((|v_processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret7#1_73| Int)) (and (= |v_processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret7#1_73| 0) (= ~pumpRunning~0 1))) (= |old(~waterLevel~0)| ~waterLevel~0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| |timeShift_getWaterLevel_#res#1|)) (and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (<= |old(~switchedOnBeforeTS~0)| 2147483647) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 2)) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1|) (<= 0 (+ |old(~switchedOnBeforeTS~0)| 2147483648)) (exists ((|v_processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret7#1_73| Int)) (and (= |v_processEnvironment__wrappee__highWaterSensor_activatePump_#t~ret7#1_73| 0) (= ~pumpRunning~0 1))) (= |old(~waterLevel~0)| ~waterLevel~0) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| |timeShift_getWaterLevel_#res#1|))) (= ~methaneLevelCritical~0 0) (= ~head~0.offset 0) (<= 2 ~waterLevel~0) (= 1 ~systemActive~0) (= |old(~pumpRunning~0)| 0) (= ~head~0.base 0) (= ~switchedOnBeforeTS~0 0) (= ~cleanupTimeShifts~0 4))' at error location [2023-12-02 20:02:02,191 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-12-02 20:02:02,191 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-12-02 20:02:02,191 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [7, 12, 11] total 25 [2023-12-02 20:02:02,191 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [853417661] [2023-12-02 20:02:02,192 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-12-02 20:02:02,192 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2023-12-02 20:02:02,193 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-12-02 20:02:02,194 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2023-12-02 20:02:02,195 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=421, Invalid=3239, Unknown=0, NotChecked=0, Total=3660 [2023-12-02 20:02:02,196 INFO L87 Difference]: Start difference. First operand 2381 states and 3043 transitions. Second operand has 25 states, 24 states have (on average 5.958333333333333) internal successors, (143), 24 states have internal predecessors, (143), 13 states have call successors, (35), 5 states have call predecessors, (35), 10 states have return successors, (35), 14 states have call predecessors, (35), 12 states have call successors, (35) [2023-12-02 20:02:07,479 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-12-02 20:02:07,480 INFO L93 Difference]: Finished difference Result 8467 states and 11641 transitions. [2023-12-02 20:02:07,480 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 127 states. [2023-12-02 20:02:07,480 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 24 states have (on average 5.958333333333333) internal successors, (143), 24 states have internal predecessors, (143), 13 states have call successors, (35), 5 states have call predecessors, (35), 10 states have return successors, (35), 14 states have call predecessors, (35), 12 states have call successors, (35) Word has length 110 [2023-12-02 20:02:07,481 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-12-02 20:02:07,483 INFO L225 Difference]: With dead ends: 8467 [2023-12-02 20:02:07,483 INFO L226 Difference]: Without dead ends: 0 [2023-12-02 20:02:07,517 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 512 GetRequests, 324 SyntacticMatches, 4 SemanticMatches, 184 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 13210 ImplicationChecksByTransitivity, 8.1s TimeCoverageRelationStatistics Valid=2758, Invalid=31652, Unknown=0, NotChecked=0, Total=34410 [2023-12-02 20:02:07,518 INFO L413 NwaCegarLoop]: 115 mSDtfsCounter, 1233 mSDsluCounter, 826 mSDsCounter, 0 mSdLazyCounter, 2920 mSolverCounterSat, 1049 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 1233 SdHoareTripleChecker+Valid, 941 SdHoareTripleChecker+Invalid, 3969 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1049 IncrementalHoareTripleChecker+Valid, 2920 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.8s IncrementalHoareTripleChecker+Time [2023-12-02 20:02:07,518 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [1233 Valid, 941 Invalid, 3969 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1049 Valid, 2920 Invalid, 0 Unknown, 0 Unchecked, 1.8s Time] [2023-12-02 20:02:07,519 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-12-02 20:02:07,519 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-12-02 20:02:07,519 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-12-02 20:02:07,520 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-12-02 20:02:07,521 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 110 [2023-12-02 20:02:07,521 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-12-02 20:02:07,522 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-12-02 20:02:07,522 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 24 states have (on average 5.958333333333333) internal successors, (143), 24 states have internal predecessors, (143), 13 states have call successors, (35), 5 states have call predecessors, (35), 10 states have return successors, (35), 14 states have call predecessors, (35), 12 states have call successors, (35) [2023-12-02 20:02:07,522 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-12-02 20:02:07,522 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-12-02 20:02:07,524 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-12-02 20:02:07,529 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2023-12-02 20:02:07,725 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-12-02 20:02:07,726 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-12-02 20:02:26,054 INFO L899 garLoopResultBuilder]: For program point deactivatePumpEXIT(lines 203 210) no Hoare annotation was computed. [2023-12-02 20:02:26,055 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 203 210) the Hoare annotation is: (or (< 2 ~waterLevel~0) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) (= ~switchedOnBeforeTS~0 0) (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|))) [2023-12-02 20:02:26,055 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 93 99) no Hoare annotation was computed. [2023-12-02 20:02:26,055 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 93 99) the Hoare annotation is: true [2023-12-02 20:02:26,055 INFO L895 garLoopResultBuilder]: At program point L141(line 141) the Hoare annotation is: (let ((.cse0 (< 2 ~waterLevel~0)) (.cse1 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 0)) .cse1) (or .cse0 (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse1))) [2023-12-02 20:02:26,055 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 127 151) the Hoare annotation is: (let ((.cse0 (< 2 ~waterLevel~0)) (.cse1 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse1) (or .cse0 (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse1))) [2023-12-02 20:02:26,055 INFO L895 garLoopResultBuilder]: At program point L137(line 137) the Hoare annotation is: (let ((.cse0 (< 2 ~waterLevel~0)) (.cse1 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 0)) .cse1) (or .cse0 (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse1))) [2023-12-02 20:02:26,055 INFO L899 garLoopResultBuilder]: For program point L135(lines 135 143) no Hoare annotation was computed. [2023-12-02 20:02:26,055 INFO L899 garLoopResultBuilder]: For program point L131(lines 131 148) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L895 garLoopResultBuilder]: At program point L146(line 146) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or .cse0 .cse1 (and (not (= ~waterLevel~0 1)) (<= 1 ~waterLevel~0)) .cse2) (or (< 2 ~waterLevel~0) (not (= ~methaneLevelCritical~0 0)) (= ~switchedOnBeforeTS~0 0) .cse2))) [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point L146-1(lines 127 151) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__methaneQueryEXIT(lines 127 151) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point isPumpRunningEXIT(lines 222 230) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 222 230) the Hoare annotation is: true [2023-12-02 20:02:26,056 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 827 838) the Hoare annotation is: (let ((.cse5 (= |old(~methaneLevelCritical~0)| 0)) (.cse1 (= ~methaneLevelCritical~0 0))) (let ((.cse4 (< 2 ~waterLevel~0)) (.cse7 (not (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (.cse8 (= ~switchedOnBeforeTS~0 0)) (.cse6 (not .cse1)) (.cse0 (not .cse5)) (.cse3 (not (= ~pumpRunning~0 0))) (.cse2 (not (= 2 ~waterLevel~0)))) (and (or .cse0 .cse1 .cse2 (not (= ~pumpRunning~0 1))) (or .cse0 .cse3 .cse1 (and (not (= ~waterLevel~0 1)) (<= 1 ~waterLevel~0))) (or .cse4 .cse3 .cse5 .cse6) (or .cse4 .cse5 .cse6 .cse7 .cse8) (or .cse4 .cse0 .cse1 .cse7 .cse8) (or .cse2 .cse5 .cse6) (or .cse0 .cse3 .cse1 .cse2)))) [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 827 838) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 905 934) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point L926(line 926) no Hoare annotation was computed. [2023-12-02 20:02:26,056 INFO L899 garLoopResultBuilder]: For program point L919(lines 919 923) no Hoare annotation was computed. [2023-12-02 20:02:26,057 INFO L902 garLoopResultBuilder]: At program point L919-1(lines 919 923) the Hoare annotation is: true [2023-12-02 20:02:26,057 INFO L902 garLoopResultBuilder]: At program point L915-2(lines 915 929) the Hoare annotation is: true [2023-12-02 20:02:26,057 INFO L902 garLoopResultBuilder]: At program point L911(line 911) the Hoare annotation is: true [2023-12-02 20:02:26,057 INFO L899 garLoopResultBuilder]: For program point L911-1(line 911) no Hoare annotation was computed. [2023-12-02 20:02:26,057 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 905 934) the Hoare annotation is: true [2023-12-02 20:02:26,057 INFO L899 garLoopResultBuilder]: For program point L930(lines 905 934) no Hoare annotation was computed. [2023-12-02 20:02:26,057 INFO L895 garLoopResultBuilder]: At program point L159(line 159) the Hoare annotation is: (let ((.cse4 (not (= ~pumpRunning~0 0))) (.cse6 (<= 1 |old(~waterLevel~0)|)) (.cse5 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (let ((.cse1 (not (= |old(~pumpRunning~0)| 1))) (.cse2 (= ~pumpRunning~0 1)) (.cse3 (not (= |old(~waterLevel~0)| 2))) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse7 (and .cse4 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse6 .cse5))) (and (or (< 1 |old(~waterLevel~0)|) .cse0 .cse1 .cse2) (or (not (= |old(~pumpRunning~0)| 0)) (< 2 |old(~waterLevel~0)|)) (or .cse1 .cse3 .cse2) (or .cse0 (and .cse4 (= |old(~waterLevel~0)| ~waterLevel~0) .cse5) .cse6) (or .cse7 .cse3) (or .cse0 (not (= |old(~waterLevel~0)| 1)) .cse7)))) [2023-12-02 20:02:26,057 INFO L899 garLoopResultBuilder]: For program point L159-1(line 159) no Hoare annotation was computed. [2023-12-02 20:02:26,057 INFO L895 garLoopResultBuilder]: At program point L345(line 345) the Hoare annotation is: (let ((.cse15 (<= 1 |old(~waterLevel~0)|)) (.cse13 (= |old(~waterLevel~0)| ~waterLevel~0))) (let ((.cse3 (= |old(~pumpRunning~0)| 0)) (.cse14 (= ~switchedOnBeforeTS~0 0)) (.cse10 (= ~pumpRunning~0 0)) (.cse5 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse15) (and (<= |old(~waterLevel~0)| 0) .cse13))) (.cse6 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| ~waterLevel~0))) (let ((.cse2 (and (not .cse14) .cse10 .cse5 .cse6)) (.cse4 (not .cse10)) (.cse7 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse0 (< 1 |old(~waterLevel~0)|)) (.cse9 (not .cse3)) (.cse8 (not (= |old(~waterLevel~0)| 2))) (.cse1 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse11 (not (= |old(~pumpRunning~0)| 1))) (.cse12 (= ~pumpRunning~0 1))) (and (or .cse0 .cse1 .cse2 .cse3 (and .cse4 .cse5 .cse6 .cse7)) (or .cse2 .cse8 (and .cse4 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~6#1| 1) (= ~waterLevel~0 1) .cse7)) (or .cse9 .cse8) (or .cse1 .cse10 (not (= |old(~waterLevel~0)| 1)) .cse11 .cse12) (or .cse0 .cse9 (and .cse10 .cse13 .cse6 .cse14)) (or .cse10 .cse11 .cse8 .cse12) (or .cse1 .cse10 .cse11 .cse15 .cse12))))) [2023-12-02 20:02:26,058 INFO L899 garLoopResultBuilder]: For program point L345-1(line 345) no Hoare annotation was computed. [2023-12-02 20:02:26,058 INFO L895 garLoopResultBuilder]: At program point L172(line 172) the Hoare annotation is: (let ((.cse3 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse2 (not (= |old(~waterLevel~0)| 2))) (.cse4 (< 1 |old(~waterLevel~0)|)) (.cse5 (= |old(~pumpRunning~0)| 0)) (.cse0 (= ~pumpRunning~0 0)) (.cse1 (= ~switchedOnBeforeTS~0 0))) (and (or (and .cse0 (= 2 ~waterLevel~0) .cse1) .cse2) (or .cse3 .cse2 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse4 .cse3 .cse5) (or (not (= |old(~pumpRunning~0)| 1)) .cse2) (or .cse4 (not .cse5) (and .cse0 (= |old(~waterLevel~0)| ~waterLevel~0) .cse1)))) [2023-12-02 20:02:26,058 INFO L899 garLoopResultBuilder]: For program point L172-1(lines 153 177) no Hoare annotation was computed. [2023-12-02 20:02:26,058 INFO L899 garLoopResultBuilder]: For program point L73-2(lines 69 91) no Hoare annotation was computed. [2023-12-02 20:02:26,058 INFO L895 garLoopResultBuilder]: At program point L330(line 330) the Hoare annotation is: (let ((.cse14 (= ~switchedOnBeforeTS~0 0))) (let ((.cse6 (not .cse14)) (.cse15 (= |old(~pumpRunning~0)| 0)) (.cse13 (= ~pumpRunning~0 0))) (let ((.cse0 (< 1 |old(~waterLevel~0)|)) (.cse8 (not (= |old(~waterLevel~0)| 1))) (.cse4 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse16 (not .cse13)) (.cse10 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse9 (<= 1 |old(~waterLevel~0)|)) (.cse11 (not (= |old(~pumpRunning~0)| 1))) (.cse12 (= ~pumpRunning~0 1)) (.cse1 (not .cse15)) (.cse5 (not (= |old(~waterLevel~0)| 2))) (.cse2 (and .cse6 .cse13)) (.cse3 (= |old(~switchedOnBeforeTS~0)| 0))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse4 .cse5 (and .cse6 .cse7) .cse3) (or .cse1 (and .cse8 .cse9) .cse10) (or (= 2 ~waterLevel~0) .cse5) (or .cse0 .cse4 .cse11 .cse12) (or .cse4 .cse1 (and .cse13 .cse14) (< 2 |old(~waterLevel~0)|)) (or .cse4 .cse8 .cse15 (and .cse16 (= ~waterLevel~0 1) .cse7)) (or .cse4 (and .cse16 .cse10 .cse7) .cse15 .cse9) (or .cse11 .cse5 .cse12) (or .cse1 .cse5 .cse2 .cse3))))) [2023-12-02 20:02:26,058 INFO L899 garLoopResultBuilder]: For program point L330-1(line 330) no Hoare annotation was computed. [2023-12-02 20:02:26,058 INFO L899 garLoopResultBuilder]: For program point L161(lines 161 169) no Hoare annotation was computed. [2023-12-02 20:02:26,058 INFO L899 garLoopResultBuilder]: For program point L157(lines 157 174) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point L347(lines 347 357) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point L343(lines 343 360) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point L343-1(lines 335 363) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point L1008(line 1008) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 66 92) the Hoare annotation is: (let ((.cse14 (= ~switchedOnBeforeTS~0 0))) (let ((.cse6 (not .cse14)) (.cse15 (= |old(~pumpRunning~0)| 0)) (.cse13 (= ~pumpRunning~0 0))) (let ((.cse0 (< 1 |old(~waterLevel~0)|)) (.cse8 (not (= |old(~waterLevel~0)| 1))) (.cse4 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse16 (not .cse13)) (.cse10 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse7 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse9 (<= 1 |old(~waterLevel~0)|)) (.cse11 (not (= |old(~pumpRunning~0)| 1))) (.cse12 (= ~pumpRunning~0 1)) (.cse1 (not .cse15)) (.cse5 (not (= |old(~waterLevel~0)| 2))) (.cse2 (and .cse6 .cse13)) (.cse3 (= |old(~switchedOnBeforeTS~0)| 0))) (and (or .cse0 .cse1 .cse2 .cse3) (or .cse4 .cse5 (and .cse6 .cse7) .cse3) (or .cse1 (and .cse8 .cse9) .cse10) (or (= 2 ~waterLevel~0) .cse5) (or .cse0 .cse4 .cse11 .cse12) (or .cse4 .cse1 (and .cse13 .cse14) (< 2 |old(~waterLevel~0)|)) (or .cse4 .cse8 .cse15 (and .cse16 (= ~waterLevel~0 1) .cse7)) (or .cse4 (and .cse16 .cse10 .cse7) .cse15 .cse9) (or .cse11 .cse5 .cse12) (or .cse1 .cse5 .cse2 .cse3))))) [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point L348(lines 348 354) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point L80-1(lines 80 86) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 66 92) no Hoare annotation was computed. [2023-12-02 20:02:26,059 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 1008) no Hoare annotation was computed. [2023-12-02 20:02:26,060 INFO L895 garLoopResultBuilder]: At program point L167(line 167) the Hoare annotation is: (let ((.cse1 (= ~methaneLevelCritical~0 0)) (.cse12 (not (= |old(~pumpRunning~0)| 1))) (.cse9 (<= 1 |old(~waterLevel~0)|))) (let ((.cse6 (not (= |old(~pumpRunning~0)| 0))) (.cse0 (not (= ~pumpRunning~0 0))) (.cse2 (= |timeShift_processEnvironment_~tmp~2#1| 0)) (.cse3 (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse9) (and (<= |old(~waterLevel~0)| 0) (= |old(~waterLevel~0)| ~waterLevel~0)))) (.cse4 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse5 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse8 (not (= |old(~waterLevel~0)| 1))) (.cse11 (= ~pumpRunning~0 1)) (.cse10 (and .cse1 .cse12)) (.cse7 (not (= |old(~waterLevel~0)| 2)))) (and (or (and .cse0 .cse1 .cse2 .cse3 .cse4) .cse5 (< 2 |old(~waterLevel~0)|)) (or .cse6 .cse7) (or .cse6 (and .cse8 .cse9)) (or (and .cse0 .cse2 .cse3 .cse4) .cse7) (or .cse5 .cse10 .cse9 .cse11) (or .cse5 .cse8 .cse12 .cse11) (or (and .cse1 .cse11) .cse10 .cse7)))) [2023-12-02 20:02:26,060 INFO L895 garLoopResultBuilder]: At program point L163(line 163) the Hoare annotation is: (let ((.cse3 (not (= ~methaneLevelCritical~0 0))) (.cse5 (not (= |old(~waterLevel~0)| 2))) (.cse0 (= |timeShift_processEnvironment_~tmp~2#1| ~methaneLevelCritical~0)) (.cse1 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1))) (.cse2 (<= 1 |old(~waterLevel~0)|)) (.cse4 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (and (or (< 1 |old(~waterLevel~0)|) (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) (and .cse0 (not (= ~pumpRunning~0 0)) (or (and .cse1 .cse2) (= |old(~waterLevel~0)| ~waterLevel~0)) .cse3 (<= ~waterLevel~0 0) .cse4)) (or .cse3 .cse5) (or .cse5 (and (not (= ~switchedOnBeforeTS~0 0)) .cse0 .cse1 .cse2 .cse4)) (or (not (= |old(~pumpRunning~0)| 0)) (< 2 |old(~waterLevel~0)|)))) [2023-12-02 20:02:26,060 INFO L899 garLoopResultBuilder]: For program point L990(lines 990 997) no Hoare annotation was computed. [2023-12-02 20:02:26,060 INFO L895 garLoopResultBuilder]: At program point L416-2(lines 408 421) the Hoare annotation is: (let ((.cse2 (<= ~waterLevel~0 2)) (.cse0 (= |ULTIMATE.start_main_~tmp~11#1| 1)) (.cse1 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and (= ~pumpRunning~0 0) .cse0 .cse1 .cse2) (and .cse0 .cse1 .cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and (= 2 ~waterLevel~0) .cse0 .cse1))) [2023-12-02 20:02:26,060 INFO L899 garLoopResultBuilder]: For program point L990-2(lines 990 997) no Hoare annotation was computed. [2023-12-02 20:02:26,060 INFO L899 garLoopResultBuilder]: For program point L379(lines 378 425) no Hoare annotation was computed. [2023-12-02 20:02:26,060 INFO L895 garLoopResultBuilder]: At program point L400(line 400) the Hoare annotation is: (let ((.cse3 (<= ~waterLevel~0 2)) (.cse0 (= 2 ~waterLevel~0)) (.cse1 (= |ULTIMATE.start_main_~tmp~11#1| 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 (= ~pumpRunning~0 1)) (and (= ~pumpRunning~0 0) .cse1 .cse2 .cse3) (and .cse1 .cse2 .cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (and .cse0 .cse1 (not (= ~methaneLevelCritical~0 0)) .cse2))) [2023-12-02 20:02:26,060 INFO L899 garLoopResultBuilder]: For program point L429(lines 368 433) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L899 garLoopResultBuilder]: For program point L388(lines 388 394) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L899 garLoopResultBuilder]: For program point L388-1(lines 388 394) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L895 garLoopResultBuilder]: At program point L426(lines 377 427) the Hoare annotation is: false [2023-12-02 20:02:26,061 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L899 garLoopResultBuilder]: For program point L398(lines 398 404) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L899 garLoopResultBuilder]: For program point L398-1(lines 398 404) no Hoare annotation was computed. [2023-12-02 20:02:26,061 INFO L895 garLoopResultBuilder]: At program point L423(lines 378 425) the Hoare annotation is: (let ((.cse5 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse0 (= 2 ~waterLevel~0)) (.cse3 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~11#1| 1)) (.cse4 (<= ~waterLevel~0 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 (= ~pumpRunning~0 1)) (and .cse3 .cse0 .cse1 .cse2) (and .cse1 .cse4 .cse2 .cse5) (and .cse0 .cse1 .cse2 (< 2 |old(~waterLevel~0)|) .cse5) (and .cse0 .cse1 (not (= ~methaneLevelCritical~0 0)) .cse2) (and .cse3 .cse1 .cse4 .cse2))) [2023-12-02 20:02:26,061 INFO L895 garLoopResultBuilder]: At program point L390(line 390) the Hoare annotation is: (let ((.cse5 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse0 (= 2 ~waterLevel~0)) (.cse3 (= ~pumpRunning~0 0)) (.cse1 (= |ULTIMATE.start_main_~tmp~11#1| 1)) (.cse4 (<= ~waterLevel~0 1)) (.cse2 (= |ULTIMATE.start_test_~splverifierCounter~0#1| 0))) (or (and .cse0 .cse1 .cse2 (= ~pumpRunning~0 1)) (and .cse3 .cse0 .cse1 .cse2) (and .cse1 .cse4 .cse2 .cse5) (and .cse0 .cse1 .cse2 (< 2 |old(~waterLevel~0)|) .cse5) (and .cse0 .cse1 (not (= ~methaneLevelCritical~0 0)) .cse2) (and .cse3 .cse1 .cse4 .cse2))) [2023-12-02 20:02:26,062 INFO L895 garLoopResultBuilder]: At program point L120(line 120) the Hoare annotation is: (let ((.cse0 (< 2 ~waterLevel~0)) (.cse1 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 0)) .cse1) (or .cse0 (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse1))) [2023-12-02 20:02:26,062 INFO L899 garLoopResultBuilder]: For program point L120-1(lines 101 125) no Hoare annotation was computed. [2023-12-02 20:02:26,062 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 101 125) the Hoare annotation is: (let ((.cse0 (< 2 ~waterLevel~0)) (.cse1 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 (not (= |old(~pumpRunning~0)| 0)) (= ~pumpRunning~0 0) .cse1) (or .cse0 (not (= ~methaneLevelCritical~0 0)) (= ~pumpRunning~0 ~switchedOnBeforeTS~0) .cse1))) [2023-12-02 20:02:26,062 INFO L895 garLoopResultBuilder]: At program point L191(line 191) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 (and (not (= ~waterLevel~0 1)) (<= 1 ~waterLevel~0)) .cse1) (or .cse0 (= ~pumpRunning~0 0) (not (= 2 ~waterLevel~0)) .cse1) (or (< 2 ~waterLevel~0) (not (= ~methaneLevelCritical~0 0)) (= ~switchedOnBeforeTS~0 0) .cse1))) [2023-12-02 20:02:26,062 INFO L899 garLoopResultBuilder]: For program point L191-1(line 191) no Hoare annotation was computed. [2023-12-02 20:02:26,062 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__highWaterSensorEXIT(lines 101 125) no Hoare annotation was computed. [2023-12-02 20:02:26,062 INFO L895 garLoopResultBuilder]: At program point L115(line 115) the Hoare annotation is: (let ((.cse0 (not (= |old(~pumpRunning~0)| 0))) (.cse1 (= ~pumpRunning~0 0)) (.cse2 (not (= ~switchedOnBeforeTS~0 |old(~pumpRunning~0)|)))) (and (or .cse0 .cse1 (not (= 2 ~waterLevel~0)) .cse2) (or .cse0 (and (not (= ~waterLevel~0 1)) (<= 1 ~waterLevel~0)) (and .cse1 (= |processEnvironment__wrappee__highWaterSensor_~tmp~0#1| 0)) .cse2) (or (< 2 ~waterLevel~0) (not (= ~methaneLevelCritical~0 0)) (= ~switchedOnBeforeTS~0 0) .cse2))) [2023-12-02 20:02:26,062 INFO L899 garLoopResultBuilder]: For program point L109(lines 109 117) no Hoare annotation was computed. [2023-12-02 20:02:26,062 INFO L899 garLoopResultBuilder]: For program point L105(lines 105 122) no Hoare annotation was computed. [2023-12-02 20:02:26,062 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 815 826) no Hoare annotation was computed. [2023-12-02 20:02:26,063 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 815 826) the Hoare annotation is: (let ((.cse1 (= 2 ~waterLevel~0)) (.cse4 (not (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (.cse2 (not (= |old(~waterLevel~0)| 2))) (.cse3 (< 1 |old(~waterLevel~0)|)) (.cse0 (not (= ~pumpRunning~0 0))) (.cse5 (= |old(~waterLevel~0)| ~waterLevel~0))) (and (or .cse0 .cse1 .cse2) (or .cse3 .cse4 .cse5) (or .cse1 (not (= ~pumpRunning~0 1)) .cse2) (or .cse1 (= ~methaneLevelCritical~0 0) .cse2) (or .cse1 .cse4 .cse2) (or .cse3 .cse0 .cse5))) [2023-12-02 20:02:26,063 INFO L899 garLoopResultBuilder]: For program point isMethaneAlarmEXIT(lines 211 221) no Hoare annotation was computed. [2023-12-02 20:02:26,063 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 211 221) the Hoare annotation is: true [2023-12-02 20:02:26,065 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1, 1, 1] [2023-12-02 20:02:26,067 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-12-02 20:02:26,076 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 02.12 08:02:26 BoogieIcfgContainer [2023-12-02 20:02:26,076 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-12-02 20:02:26,077 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-12-02 20:02:26,077 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-12-02 20:02:26,077 INFO L274 PluginConnector]: Witness Printer initialized [2023-12-02 20:02:26,077 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 02.12 08:01:33" (3/4) ... [2023-12-02 20:02:26,078 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure deactivatePump [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__highWaterSensor [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__methaneQuery [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2023-12-02 20:02:26,081 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isMethaneAlarm [2023-12-02 20:02:26,089 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 53 nodes and edges [2023-12-02 20:02:26,089 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2023-12-02 20:02:26,090 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-12-02 20:02:26,090 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-12-02 20:02:26,091 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-12-02 20:02:26,112 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((2 == waterLevel) && (tmp == 1)) && (splverifierCounter == 0)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (2 == waterLevel)) && (tmp == 1)) && (splverifierCounter == 0))) || ((((tmp == 1) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (pumpRunning == switchedOnBeforeTS))) || (((((2 == waterLevel) && (tmp == 1)) && (splverifierCounter == 0)) && (2 < \old(waterLevel))) && (pumpRunning == switchedOnBeforeTS))) || ((((2 == waterLevel) && (tmp == 1)) && !((methaneLevelCritical == 0))) && (splverifierCounter == 0))) || ((((pumpRunning == 0) && (tmp == 1)) && (waterLevel <= 1)) && (splverifierCounter == 0))) [2023-12-02 20:02:26,143 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((((2 == waterLevel) && (tmp == 1)) && (splverifierCounter == 0)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (2 == waterLevel)) && (tmp == 1)) && (splverifierCounter == 0))) || ((((tmp == 1) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (pumpRunning == switchedOnBeforeTS))) || (((((2 == waterLevel) && (tmp == 1)) && (splverifierCounter == 0)) && (2 < \old(waterLevel))) && (pumpRunning == switchedOnBeforeTS))) || ((((2 == waterLevel) && (tmp == 1)) && !((methaneLevelCritical == 0))) && (splverifierCounter == 0))) || ((((pumpRunning == 0) && (tmp == 1)) && (waterLevel <= 1)) && (splverifierCounter == 0))) [2023-12-02 20:02:26,191 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/witness.graphml [2023-12-02 20:02:26,191 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/witness.yml [2023-12-02 20:02:26,191 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-12-02 20:02:26,192 INFO L158 Benchmark]: Toolchain (without parser) took 53896.59ms. Allocated memory was 172.0MB in the beginning and 778.0MB in the end (delta: 606.1MB). Free memory was 139.7MB in the beginning and 595.7MB in the end (delta: -456.0MB). Peak memory consumption was 149.1MB. Max. memory is 16.1GB. [2023-12-02 20:02:26,192 INFO L158 Benchmark]: CDTParser took 0.19ms. Allocated memory is still 125.8MB. Free memory is still 95.1MB. There was no memory consumed. Max. memory is 16.1GB. [2023-12-02 20:02:26,193 INFO L158 Benchmark]: CACSL2BoogieTranslator took 467.05ms. Allocated memory is still 172.0MB. Free memory was 139.0MB in the beginning and 132.5MB in the end (delta: 6.5MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. [2023-12-02 20:02:26,193 INFO L158 Benchmark]: Boogie Procedure Inliner took 46.94ms. Allocated memory is still 172.0MB. Free memory was 132.5MB in the beginning and 129.7MB in the end (delta: 2.9MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. [2023-12-02 20:02:26,193 INFO L158 Benchmark]: Boogie Preprocessor took 31.05ms. Allocated memory is still 172.0MB. Free memory was 129.7MB in the beginning and 128.3MB in the end (delta: 1.3MB). There was no memory consumed. Max. memory is 16.1GB. [2023-12-02 20:02:26,193 INFO L158 Benchmark]: RCFGBuilder took 512.92ms. Allocated memory is still 172.0MB. Free memory was 128.3MB in the beginning and 97.4MB in the end (delta: 30.9MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. [2023-12-02 20:02:26,194 INFO L158 Benchmark]: TraceAbstraction took 52717.06ms. Allocated memory was 172.0MB in the beginning and 778.0MB in the end (delta: 606.1MB). Free memory was 96.9MB in the beginning and 604.1MB in the end (delta: -507.2MB). Peak memory consumption was 433.4MB. Max. memory is 16.1GB. [2023-12-02 20:02:26,194 INFO L158 Benchmark]: Witness Printer took 114.89ms. Allocated memory is still 778.0MB. Free memory was 604.1MB in the beginning and 595.7MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. [2023-12-02 20:02:26,196 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.19ms. Allocated memory is still 125.8MB. Free memory is still 95.1MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 467.05ms. Allocated memory is still 172.0MB. Free memory was 139.0MB in the beginning and 132.5MB in the end (delta: 6.5MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 46.94ms. Allocated memory is still 172.0MB. Free memory was 132.5MB in the beginning and 129.7MB in the end (delta: 2.9MB). Peak memory consumption was 4.2MB. Max. memory is 16.1GB. * Boogie Preprocessor took 31.05ms. Allocated memory is still 172.0MB. Free memory was 129.7MB in the beginning and 128.3MB in the end (delta: 1.3MB). There was no memory consumed. Max. memory is 16.1GB. * RCFGBuilder took 512.92ms. Allocated memory is still 172.0MB. Free memory was 128.3MB in the beginning and 97.4MB in the end (delta: 30.9MB). Peak memory consumption was 31.5MB. Max. memory is 16.1GB. * TraceAbstraction took 52717.06ms. Allocated memory was 172.0MB in the beginning and 778.0MB in the end (delta: 606.1MB). Free memory was 96.9MB in the beginning and 604.1MB in the end (delta: -507.2MB). Peak memory consumption was 433.4MB. Max. memory is 16.1GB. * Witness Printer took 114.89ms. Allocated memory is still 778.0MB. Free memory was 604.1MB in the beginning and 595.7MB in the end (delta: 8.4MB). Peak memory consumption was 8.4MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [49] - GenericResultAtLocation [Line: 313]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [313] - GenericResultAtLocation [Line: 364]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [364] - GenericResultAtLocation [Line: 434]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [434] - GenericResultAtLocation [Line: 800]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [800] - GenericResultAtLocation [Line: 903]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [903] - GenericResultAtLocation [Line: 1003]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [1003] - GenericResultAtLocation [Line: 1012]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [1012] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 1008]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 11 procedures, 75 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 52.7s, OverallIterations: 8, TraceHistogramMax: 5, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 9.0s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 18.3s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 2448 SdHoareTripleChecker+Valid, 3.8s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 2423 mSDsluCounter, 3776 SdHoareTripleChecker+Invalid, 3.2s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2950 mSDsCounter, 1542 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 5540 IncrementalHoareTripleChecker+Invalid, 7082 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1542 mSolverCounterUnsat, 826 mSDtfsCounter, 5540 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 880 GetRequests, 553 SyntacticMatches, 4 SemanticMatches, 323 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 16470 ImplicationChecksByTransitivity, 13.0s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=2381occurred in iteration=7, InterpolantAutomatonStates: 241, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.4s AutomataMinimizationTime, 8 MinimizatonAttempts, 424 StatesRemovedByMinimization, 5 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 30 LocationsWithAnnotation, 4636 PreInvPairs, 5603 NumberOfFragments, 1713 HoareAnnotationTreeSize, 4636 FomulaSimplifications, 68388 FormulaSimplificationTreeSizeReduction, 3.4s HoareSimplificationTime, 30 FomulaSimplificationsInter, 83596 FormulaSimplificationTreeSizeReductionInter, 14.6s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 2.7s InterpolantComputationTime, 606 NumberOfCodeBlocks, 606 NumberOfCodeBlocksAsserted, 10 NumberOfCheckSat, 782 ConstructedInterpolants, 0 QuantifiedInterpolants, 1884 SizeOfPredicates, 19 NumberOfNonLiveVariables, 726 ConjunctsInSsa, 46 ConjunctsInUnsatCore, 12 InterpolantComputations, 6 PerfectInterpolantSequences, 368/404 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 378]: Loop Invariant Derived loop invariant: (((((((((2 == waterLevel) && (tmp == 1)) && (splverifierCounter == 0)) && (pumpRunning == 1)) || ((((pumpRunning == 0) && (2 == waterLevel)) && (tmp == 1)) && (splverifierCounter == 0))) || ((((tmp == 1) && (waterLevel <= 1)) && (splverifierCounter == 0)) && (pumpRunning == switchedOnBeforeTS))) || (((((2 == waterLevel) && (tmp == 1)) && (splverifierCounter == 0)) && (2 < \old(waterLevel))) && (pumpRunning == switchedOnBeforeTS))) || ((((2 == waterLevel) && (tmp == 1)) && !((methaneLevelCritical == 0))) && (splverifierCounter == 0))) || ((((pumpRunning == 0) && (tmp == 1)) && (waterLevel <= 1)) && (splverifierCounter == 0))) - InvariantResult [Line: 211]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 915]: Loop Invariant Derived loop invariant: 1 - InvariantResult [Line: 377]: Loop Invariant Derived loop invariant: 0 RESULT: Ultimate proved your program to be correct! [2023-12-02 20:02:26,216 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_abbe2aed-3e66-4747-9165-c057432f1152/bin/utaipan-verify-nQ1chXbOIh/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE